Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business

|-  PRODUITS


|||-  

Security alert! Alert #4!

 

1 utilisateur anonyme
Ajouter une réponse
 

 
Page photos
 
     
Vider la liste des messages à citer
 
 Page :
1
Auteur
 Sujet :

Security alert! Alert #4!

Prévenir les modérateurs en cas d'abus 
athlon63
athlon63
  1. Posté le 06/10/2009 à 14:11:44  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
bonjour !

 il m est Impossible d'acceder à un site. Il affiche une page
 presque vide avec seulement Security alert et alert "4.et ce a partir d internet explorer !!
 avec firefox ca fonctionne
 si quelqu un a une idée , merci

  1. homepage
bobette-marlow
Assidu (de 10 000 à 19 999 messages postés)
  1. Posté le 06/10/2009 à 14:42:24  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut,
 Installe Malewarebytes' Antimalware >>> http://es.brothersoft.com/soft​-icon/59/5272aab2019f603efbd75​7dc4507b37b.gif[/url]<<<

 Fait un scan rapide,coche puis clique sur  Supprimer la sélection
 Ensuite poste le rapport final.
 Aide en images


 Télécharge >OTL.exe< (par OldTimer).
 Enregistre-le sur le Bureau.

 Fais un double clic sur OTL.exe pour lancer l'outil.

 Si ton PC est sous Windows Vista,faire un clic droit sur OTL.exe
 et choisir "Exécuter en tant qu'Administrateur" pour exécuter le tool.



 Coche la case Scan All Users

 Prends soin de cocher aussi dans le paragraphe Extra Registry : Use SafeList
 Tu peux cocher LopCheck et Purity check
 Puis clique sur le bouton Run Scan

 http://img207.imageshack.us/im​g207/5199/090220102118710763.p​ng


 Laisse l'outil  travailler sans l'interrompre.
 Lorsque le scan sera  terminé,le Bloc-notes va s'ouvrir avec le rapport.
 Ferme le Bloc-notes.
 Le second rapport est visible dans la Barre des tâches.Ferme-le également.
 Ferme aussi la fenêtre de OTL.

 Poste les deux rapports OTL.txt et Extras.txt se trouvant sur le Bureau.


---------------
>>Surfons Couverts<< en Tutos
(Publicité)
athlon63
  1. Posté le 06/10/2009 à 17:38:28  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
ok merci pour l aide !! voici les rapports

 OTL Extras logfile created on: 10/6/2009 18:23:38 - Run 1
 OTL by OldTimer - Version 3.0.18.4     Folder = C:\Documents and Settings\maxime\Bureau
 Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
 Internet Explorer (Version = 8.0.6001.18702)
 Locale: 0000040C | Country: France | Language: FRA | Date Format: M/d/yyyy
 
 1.50 Gb Total Physical Memory | 0.05 Gb Available Physical Memory | 3.66% Memory free
 2.86 Gb Paging File | 1.64 Gb Available in Paging File | 57.34% Paging File free
 Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
 
 %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
 Drive C: | 141.60 Gb Total Space | 127.25 Gb Free Space | 89.87% Space Free | Partition Type: NTFS
 Drive D: | 37.26 Gb Total Space | 21.03 Gb Free Space | 56.45% Space Free | Partition Type: NTFS
 Drive E: | 2.05 Gb Total Space | 1.53 Gb Free Space | 74.66% Space Free | Partition Type: FAT32
 F: Drive not present or media not loaded
 G: Drive not present or media not loaded
 H: Drive not present or media not loaded
 I: Drive not present or media not loaded
 
 Computer Name: MAX
 Current User Name: maxime
 Logged in as Administrator.
 
 Current Boot Mode: Normal
 Scan Mode: All users
 Company Name Whitelist: Off
 Skip Microsoft Files: Off
 File Age = 30 Days
 Output = Standard
 
 ========== Extra Registry (SafeList) ==========
 
 
 ========== File Associations ==========
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\<extension>]
 .chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation)
 .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
 
 ========== Shell Spawning ==========
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\<key>\shell\[comma​nd]\command]
 batfile [open] -- "%1" %* File not found
 chm.file [open] -- "C:\WINDOWS\hh.exe" %1 (Microsoft Corporation)
 cmdfile [open] -- "%1" %* File not found
 comfile [open] -- "%1" %* File not found
 exefile [open] -- "%1" %* File not found
 htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
 htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
 htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
 htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
 http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
 https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
 piffile [open] -- "%1" %* File not found
 regfile [merge] -- Reg Error: Key error.
 scrfile [config] -- "%1" File not found
 scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
 scrfile [open] -- "%1" /S File not found
 txtfile [edit] -- Reg Error: Key error.
 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
 Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
 Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
 Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
 CLSID\{871C5380-42A0-1069-A2EA​-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
 
 ========== Security Center Settings ==========
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center]
 "AntiVirusDisableNotify" = 0
 "FirewallDisableNotify" = 0
 "UpdatesDisableNotify" = 0
 "AntiVirusOverride" = 0
 "FirewallOverride" = 0
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring\AhnlabAntiVirus]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring\KasperskyAntiVirus]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring\McAfeeAntiVirus]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring\McAfeeFirewall]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring\PandaAntiVirus]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring\PandaFirewall]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring\SophosAntiVirus]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring\SymantecAntiVirus]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring\SymantecFirewall]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring\TinyFirewall]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring\TrendAntiVirus]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring\TrendFirewall]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring\ZoneLabsFirewall]
 
 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Services\SharedA​ccess\Parameters\FirewallPolic​y\DomainProfile]
 
 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Services\SharedA​ccess\Parameters\FirewallPolic​y\DomainProfile\GloballyOpenPo​rts\List]
 "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dl​l,-22004
 "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dl​l,-22005
 "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dl​l,-22001
 "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dl​l,-22002
 
 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Services\SharedA​ccess\Parameters\FirewallPolic​y\StandardProfile]
 "EnableFirewall" = 1
 "DoNotAllowExceptions" = 0
 "DisableNotifications" = 0
 
 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Services\SharedA​ccess\Parameters\FirewallPolic​y\StandardProfile\GloballyOpen​Ports\List]
 "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@​xpsp2res.dll,-22007
 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@​xpsp2res.dll,-22008
 "139:TCP" = 139:TCP:LocalSubNet:Enabled:@x​psp2res.dll,-22004
 "445:TCP" = 445:TCP:LocalSubNet:Enabled:@x​psp2res.dll,-22005
 "137:UDP" = 137:UDP:LocalSubNet:Enabled:@x​psp2res.dll,-22001
 "138:UDP" = 138:UDP:LocalSubNet:Enabled:@x​psp2res.dll,-22002
 
 ========== Authorized Applications List ==========
 
 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Services\SharedA​ccess\Parameters\FirewallPolic​y\DomainProfile\AuthorizedAppl​ications\List]
 "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Ena​bled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
 "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:En​abled:Windows Live Call -- (Microsoft Corporation)
 "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:E​nabled:Windows Live Messenger -- (Microsoft Corporation)
 
 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Services\SharedA​ccess\Parameters\FirewallPolic​y\StandardProfile\AuthorizedAp​plications\List]
 "C:\Program Files\IncrediMail\bin\IMApp.ex​e" = C:\Program Files\IncrediMail\bin\IMApp.ex​e:*:Enabled:IncrediMail -- (IncrediMail, Ltd.)
 "C:\Program Files\IncrediMail\bin\IncMail.​exe" = C:\Program Files\IncrediMail\bin\IncMail.​exe:*:Enabled:IncrediMail -- (IncrediMail, Ltd.)
 "C:\Program Files\IncrediMail\bin\ImpCnt.e​xe" = C:\Program Files\IncrediMail\bin\ImpCnt.e​xe:*:Enabled:IncrediMail -- (IncrediMail, Ltd.)
 "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Ena​bled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
 "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:En​abled:Windows Live Call -- (Microsoft Corporation)
 "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:E​nabled:Windows Live Messenger -- (Microsoft Corporation)
 "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:​Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
 "C:\Program Files\Bonjour\mDNSResponder.ex​e" = C:\Program Files\Bonjour\mDNSResponder.ex​e:*:Enabled:Bonjour -- (Apple Inc.)
 "C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enab​led:iTunes -- (Apple Inc.)
 "C:\WINDOWS\system32\spool\dri​vers\w32x86\3\SAGENT4.EXE" = C:\WINDOWS\system32\spool\driv​ers\w32x86\3\SAGENT4.EXE:*:Ena​bled:SAgent4 -- (SEIKO EPSON CORPORATION)
 "C:\Program Files\adslTV\adsltv.exe" = C:\Program Files\adslTV\adsltv.exe:*:Enab​led:adsltv -- File not found
 "C:\Program Files\adslTV\vlc.exe" = C:\Program Files\adslTV\vlc.exe:*:Enabled​:VLC media player -- File not found
 "C:\FreePack\freepack.exe" = C:\FreePack\freepack.exe:*:Ena​bled:freepack -- ()
 "C:\Program Files\Ipulp\ipulp.exe" = C:\Program Files\Ipulp\ipulp.exe:*:Enable​d:Ipulp -- (Ipulp Software)
 
 
 ========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Uninstall]
 "{00000000-5736-4205-1000-75FF​97AC5007}" = Steganos Internet Trace Destructor 7.1.1
 "{01523985-2098-43AF-9C97-12B0​7BE02A9B}" = Windows Live Call
 "{04DA096D-6236-4A5D-8FB6-3081​E67009BA}" = CANAL+ CANALSAT A LA DEMANDE
 "{059C042E-796A-4ACC-A81A-ECC2​010BB78C}" = Windows Live Messenger
 "{07D5737F-B952-4D3D-8089-FEBA​994BAAC2}_is1" = Ipulp 1.2
 "{0BD83598-C2EF-3343-847B-7D2E​84599128}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA
 "{18455581-E099-4BA8-BC6B-F34B​2F06600C}" = Google Toolbar for Internet Explorer
 "{1FBF6C24-C1FD-4101-A42B-0C56​4F9E8E79}" = DVD Suite
 "{205C6BDD-7B73-42DE-8505-9A09​3F35A238}" = Outil de téléchargement Windows Live
 "{216AB108-2AE1-4130-B3D5-20B2​C4C80F8F}" = QuickTime
 "{22B775E7-6C42-4FC5-8E10-9A5E​3257BD94}" = MSVCRT
 "{2318C2B1-4965-11d4-9B18-0090​27A5CD4F}" = Google Toolbar for Internet Explorer
 "{350C940c-3D7C-4EE8-BAA9-00BC​B3D54227}" = WebFldrs XP
 "{3CCB732A-E472-4CF9-B1EE-F183​65341FE0}" = Installation Windows Live
 "{3E31821C-7917-367E-938E-E65F​C413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra
 "{6811CAA0-BF12-11D4-9EA1-0050​BAE317E1}" = PowerDVD
 "{6956856F-B6B3-4BE0-BA0B-8F49​5BE32033}" = Apple Software Update
 "{72AD53CC-CCC0-3757-8480-9EE1​76866A7C}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA
 "{735D1B9F-A9A4-4FF2-A830-96C1​50883B97}" = QVGDM Seconde Edition
 "{8A25392D-C5D2-4E79-A2BD-C15D​DC5B0959}" = Bonjour
 "{8FFC5648-FAF8-43A3-BC8F-42BA​1E275C4E}" = Choice Guard
 "{90120000-0010-040C-0000-0000​000FF1CE}" = Microsoft Software Update for Web Folders  (French) 12
 "{90120000-0011-0000-0000-0000​000FF1CE}" = Microsoft Office Professional Plus 2007
 "{90120000-0011-0000-0000-0000​000FF1CE}_PROPLUS_{BEE75E01-DD​3F-4D5F-B96C-609E6538D419}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
 "{90120000-0015-040C-0000-0000​000FF1CE}" = Microsoft Office Access MUI (French) 2007
 "{90120000-0015-040C-0000-0000​000FF1CE}_PROPLUS_{A0353900-21​A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
 "{90120000-0016-040C-0000-0000​000FF1CE}" = Microsoft Office Excel MUI (French) 2007
 "{90120000-0018-040C-0000-0000​000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
 "{90120000-0019-040C-0000-0000​000FF1CE}" = Microsoft Office Publisher MUI (French) 2007
 "{90120000-001A-040C-0000-0000​000FF1CE}" = Microsoft Office Outlook MUI (French) 2007
 "{90120000-001B-040C-0000-0000​000FF1CE}" = Microsoft Office Word MUI (French) 2007
 "{90120000-001B-040C-0000-0000​000FF1CE}_PROPLUS_{A0353900-21​A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
 "{90120000-001F-0401-0000-0000​000FF1CE}" = Microsoft Office Proof (Arabic) 2007
 "{90120000-001F-0407-0000-0000​000FF1CE}" = Microsoft Office Proof (German) 2007
 "{90120000-001F-0409-0000-0000​000FF1CE}" = Microsoft Office Proof (English) 2007
 "{90120000-001F-040C-0000-0000​000FF1CE}" = Microsoft Office Proof (French) 2007
 "{90120000-001F-0413-0000-0000​000FF1CE}" = Microsoft Office Proof (Dutch) 2007
 "{90120000-001F-0C0A-0000-0000​000FF1CE}" = Microsoft Office Proof (Spanish) 2007
 "{90120000-002C-040C-0000-0000​000FF1CE}" = Microsoft Office Proofing (French) 2007
 "{90120000-0044-040C-0000-0000​000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007
 "{90120000-006E-040C-0000-0000​000FF1CE}" = Microsoft Office Shared MUI (French) 2007
 "{95120000-00B9-0409-0000-0000​000FF1CE}" = Microsoft Application Error Reporting
 "{9A394342-4A68-4EBA-85A6-55B5​59F4E700}" = Microsoft .NET Framework 1.1 French Language Pack
 "{A1F66FC9-11EE-4F2F-98C9-16F8​D1E69FB7}" = Segoe UI
 "{A2BCA9F1-566C-4805-97D1-7FDC​93386723}" = Adobe AIR
 "{A3051CD0-2F64-3813-A88D-B8DC​CDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
 "{A92DAB39-4E2C-4304-9AB6-BC44​E68B55E2}" = Google Update Helper
 "{AC76BA86-7AD7-1036-7B44-A900​00000001}" = Adobe Reader 9 - Français
 "{B7A0CE06-068E-11D6-97FD-0050​BACBF861}" = PowerProducer
 "{C09FB3CD-3D0C-3F2D-899A-6A1D​67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
 "{CB2F7EDD-9D1F-43C1-90FC-4F52​EAE172A1}" = Microsoft .NET Framework 1.1
 "{CC016F21-3970-11DE-B878-0050​56806466}" = Google Earth
 "{CE2CDD62-0124-36CA-84D3-9F4D​CF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
 "{D3116CC7-24DC-4CA3-9CE1-23FE​D836E9F2}" = Assistant de connexion Windows Live
 "{DED53B0B-B67C-4244-AE6A-D6FD​3C28D1EF}" = Ad-Aware 2007
 "{EC4455AB-F155-4CC1-A4C5-88F3​777F9886}" = Apple Mobile Device Support
 "{F5C63795-2708-4D15-BF18-5ABB​FF7DFFC8}" = iTunes
 "{F69E83CF-B440-43F8-89E6-6EA8​0712109B}" = Windows Live Communications Platform
 "{FF262740-C85A-11D5-BBEC-00D0​B740900A}" = USB Wireless Keyboard Driver
 "Adobe AIR" = Adobe AIR
 "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
 "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
 "AI RoboForm" = AI RoboForm (All Users)
 "ATI Display Driver" = ATI Display Driver
 "avast!" = avast! Antivirus
 "Bookworm Deluxe" = Bookworm Deluxe
 "FaceSwapper_is1" = FaceSwapper v1.0
 "FreePack" = FreePack
 "IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
 "ie8" = Windows Internet Explorer 8
 "IncrediMail" = IncrediMail Xe
 "JunkFilterPlus" = IncrediMail JunkFilter Plus
 "Le journal de votre naissance" = Le journal de votre naissance
 "MahJong Suite_is1" = MahJong Suite 2009 v6.0
 "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
 "Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
 "Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra
 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
 "Mozilla Firefox (3.0.13)" = Mozilla Firefox (3.0.13)
 "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
 "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
 "NVIDIAnForce" = Pilotes NVIDIA nForce pour Windows 2000/XP
 "PROPLUS" = Microsoft Office Professional Plus 2007
 "Rainlendar2" = Rainlendar2 (remove only)
 "SLD Codec Pack" = SLD Codec Pack
 "SSUtils" = NVIDIA nForce Utilities
 "TvFreePlayer Tools" = TvFreePlayer Tools
 "Virtual Magnifying Glass" = Virtual Magnifying Glass
 "VLC media player" = VLC media player 1.0.1
 "Windows Media Format Runtime" = Windows Media Format 11 runtime
 "Windows Media Player" = Lecteur Windows Media 11
 "Windows XP Service" = Windows XP Service Pack 3
 "WinLiveSuite_Wave3" = Installation Windows Live
 "WinRAR archiver" = Archiveur WinRAR
 "WMFDist11" = Windows Media Format 11 runtime
 "wmp11" = Windows Media Player 11
 "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
 "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
 "Your Uninstaller! 2008_is1" = Your Uninstaller! 2008 Version 6.0
 
 ========== Last 10 Event Log Errors ==========
 
 [ Antivirus Events ]
 Error - 1/27/2009 11:41:36 | Computer Name = MAX | Source = avast! | ID = 33554522
 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
 I:\WORD.FR-FR\WordMUI.msi failed, 0000001E.  
 
 Error - 1/27/2009 11:43:21 | Computer Name = MAX | Source = avast! | ID = 33554522
 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
 I:\PROPLUS.WW\ProPlusWW.msi failed, 0000001E.  
 
 [ Application Events ]
 Error - 4/29/2009 9:40:50 | Computer Name = MAX | Source = Windows Product Activation | ID = 1012
 Description = Vous aurez besoin de réactiver votre produit Windows en raison des
 modifications matérielles effectuées sur cet ordinateur.
 
 Error - 6/9/2009 2:01:35 | Computer Name = MAX | Source = Google Update | ID = 20
 Description =
 
 Error - 6/9/2009 3:01:35 | Computer Name = MAX | Source = Google Update | ID = 20
 Description =
 
 Error - 6/9/2009 4:01:35 | Computer Name = MAX | Source = Google Update | ID = 20
 Description =
 
 [ Canal+ Events ]
 Error - 5/9/2009 13:01:39 | Computer Name = MAX | Source = VideoOnDemand | ID = 0
 Description = ServicesAdapter::ProcessReques​t : Le processus ne peut pas accéder
 au fichier 'C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\cache\contents\pro​d1060062\m1340581_ushuaiatv.fr​_AAAU0000000000013956_55_20090​507050404.jpg',
 car il est en cours d'utilisation par un autre processus.
 
 Error - 5/11/2009 12:03:07 | Computer Name = MAX | Source = VideoOnDemand | ID = 0
 Description = ServicesAdapter::ProcessReques​t : Le processus ne peut pas accéder
 au fichier 'C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\cache\contents\pro​d1050083\m1330555_histoire.fr_​AAAH0000000000013423_55_200904​28164642.jpg',
 car il est en cours d'utilisation par un autre processus.
 
 Error - 5/11/2009 13:01:43 | Computer Name = MAX | Source = VideoOnDemand | ID = 0
 Description = ServicesAdapter::ProcessReques​t : Le processus ne peut pas accéder
 au fichier 'C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\cache\contents\pro​d1020026\m1300299_canal.fr_106​8419_5_VR_43_MTBD_55_200904231​51654.jpg',
 car il est en cours d'utilisation par un autre processus.
 
 Error - 5/14/2009 2:25:29 | Computer Name = MAX | Source = VideoOnDemand | ID = 0
 Description = ServicesAdapter::ProcessReques​t : Accès refusé.  
 
 Error - 6/17/2009 2:37:30 | Computer Name = MAX | Source = VideoOnDemand | ID = 0
 Description = ServicesAdapter::ProcessReques​t : Un processus ayant l'ID -1 n'est
 pas exécuté.
 
 [ System Events ]
 Error - 10/6/2009 11:04:50 | Computer Name = MAX | Source = Service Control Manager | ID = 7006
 Description = L'appel ScRegSetValueExW a échoué pour Start avec l'erreur :   %%5
 
 Error - 10/6/2009 11:04:50 | Computer Name = MAX | Source = Service Control Manager | ID = 7006
 Description = L'appel ScRegSetValueExW a échoué pour Start avec l'erreur :   %%5
 
 Error - 10/6/2009 11:04:50 | Computer Name = MAX | Source = Service Control Manager | ID = 7006
 Description = L'appel ScRegSetValueExW a échoué pour Start avec l'erreur :   %%5
 
 Error - 10/6/2009 11:11:46 | Computer Name = MAX | Source = Service Control Manager | ID = 7034
 Description = Le service CanalPlus.VOD s'est terminé de façon inattendue pour la
 1ème fois.
 
 Error - 10/6/2009 11:11:51 | Computer Name = MAX | Source = Service Control Manager | ID = 7034
 Description = Le service Cyberlink RichVideo Service(CRVS) s'est terminé de façon
 inattendue pour la 1ème fois.
 
 Error - 10/6/2009 11:25:28 | Computer Name = MAX | Source = Service Control Manager | ID = 7006
 Description = L'appel ScRegSetValueExW a échoué pour Start avec l'erreur :   %%5
 
 Error - 10/6/2009 11:25:28 | Computer Name = MAX | Source = Service Control Manager | ID = 7006
 Description = L'appel ScRegSetValueExW a échoué pour Start avec l'erreur :   %%5
 
 Error - 10/6/2009 11:25:28 | Computer Name = MAX | Source = Service Control Manager | ID = 7006
 Description = L'appel ScRegSetValueExW a échoué pour Start avec l'erreur :   %%5
 
 Error - 10/6/2009 11:25:28 | Computer Name = MAX | Source = Service Control Manager | ID = 7006
 Description = L'appel ScRegSetValueExW a échoué pour Start avec l'erreur :   %%5
 
 Error - 10/6/2009 11:43:02 | Computer Name = MAX | Source = BROWSER | ID = 8032
 Description = Le service Explorateur d'ordinateur a rencontré un nombre d'échecs
 trop important en essayant de retrouver la copie de sauvegarde de la liste sur
 le transport \Device\NetBT_Tcpip_{E3E3D873-​6529-4A6D-B7F5-E87F19B6DA1A}.  L'explorateur
 secondaire s'arrête.
 
 
 < End of report >



 OTL logfile created on: 10/6/2009 18:23:37 - Run 1
 OTL by OldTimer - Version 3.0.18.4     Folder = C:\Documents and Settings\maxime\Bureau
 Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
 Internet Explorer (Version = 8.0.6001.18702)
 Locale: 0000040C | Country: France | Language: FRA | Date Format: M/d/yyyy
 
 1.50 Gb Total Physical Memory | 0.05 Gb Available Physical Memory | 3.66% Memory free
 2.86 Gb Paging File | 1.64 Gb Available in Paging File | 57.34% Paging File free
 Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
 
 %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
 Drive C: | 141.60 Gb Total Space | 127.25 Gb Free Space | 89.87% Space Free | Partition Type: NTFS
 Drive D: | 37.26 Gb Total Space | 21.03 Gb Free Space | 56.45% Space Free | Partition Type: NTFS
 Drive E: | 2.05 Gb Total Space | 1.53 Gb Free Space | 74.66% Space Free | Partition Type: FAT32
 F: Drive not present or media not loaded
 G: Drive not present or media not loaded
 H: Drive not present or media not loaded
 I: Drive not present or media not loaded
 
 Computer Name: MAX
 Current User Name: maxime
 Logged in as Administrator.
 
 Current Boot Mode: Normal
 Scan Mode: All users
 Company Name Whitelist: Off
 Skip Microsoft Files: Off
 File Age = 30 Days
 Output = Standard
 
 ========== Processes (SafeList) ==========
 
 PRC - [2006/02/21 21:39:16 | 00,405,504 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.e​xe
 PRC - [2009/02/05 23:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
 PRC - [2009/02/05 23:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
 PRC - [2006/02/21 21:39:16 | 00,405,504 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.e​xe
 PRC - [2008/04/14 04:34:03 | 01,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE
 PRC - [2009/02/05 23:08:45 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
 PRC - [2005/03/09 06:00:00 | 00,098,304 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\spool\DRIV​ERS\W32X86\3\E_FATIAIE.EXE
 PRC - [2005/01/19 16:12:00 | 00,258,048 | ---- | M] () -- C:\Program Files\Steganos Internet Trace Destructor 7\ITD7.exe
 PRC - [2008/08/24 14:01:56 | 04,067,328 | ---- | M] () -- C:\Program Files\Rainlendar2\Rainlendar2.​exe
 PRC - [2006/06/06 19:42:03 | 00,441,344 | ---- | M] () -- C:\Program Files\Virtual Magnifying Glass\Magnifying Glass.exe
 PRC - [2009/01/27 16:41:27 | 00,160,592 | ---- | M] (Siber Systems) -- C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
 PRC - [2008/11/07 15:28:16 | 00,132,424 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceS​ervice.exe
 PRC - [2008/08/29 11:18:44 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.ex​e
 PRC - [2009/04/28 17:33:56 | 00,188,416 | ---- | M] (Canal+ Active) -- C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe
 PRC - [2009/01/27 16:33:44 | 00,139,305 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files\IncrediMail\bin\IMApp.ex​e
 PRC - [2007/05/14 04:54:36 | 00,272,024 | ---- | M] () -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe
 PRC - [2009/02/05 23:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
 PRC - [2009/02/05 23:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
 PRC - [2007/10/29 13:27:04 | 00,587,096 | ---- | M] (Lavasoft AB) -- C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
 PRC - [2007/11/07 15:48:32 | 04,653,056 | ---- | M] (Lavasoft AB) -- C:\Program Files\Lavasoft\Ad-Aware 2007\Ad-Aware2007.exe
 PRC - [2007/11/07 15:49:34 | 04,579,328 | ---- | M] (Lavasoft AB) -- C:\Program Files\Lavasoft\Ad-Aware 2007\Ad-Watch2007.exe
 PRC - [2009/03/08 14:09:26 | 00,638,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe
 PRC - [2009/03/08 14:09:26 | 00,638,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe
 PRC - [2009/03/08 14:09:26 | 00,638,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe
 PRC - [2009/10/06 18:22:06 | 00,520,704 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\maxime\Bureau\OTL.exe
 
 ========== Win32 Services (SafeList) ==========
 
 SRV - [2008/11/07 15:28:16 | 00,132,424 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceS​ervice.exe -- (Apple Mobile Device [Auto | Running])
 SRV - [2008/07/25 11:16:40 | 00,034,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Frame​work\v2.0.50727\aspnet_state.e​xe -- (aspnet_state [On_Demand | Stopped])
 SRV - [2009/02/05 23:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running])
 SRV - [2006/02/21 21:39:16 | 00,405,504 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.e​xe -- (Ati HotKey Poller [Auto | Running])
 SRV - [2009/02/05 23:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running])
 SRV - [2009/02/05 23:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Running])
 SRV - [2009/02/05 23:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running])
 SRV - [2008/08/29 11:18:44 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.ex​e -- (Bonjour Service [Auto | Running])
 SRV - [2009/04/28 17:33:56 | 00,188,416 | ---- | M] (Canal+ Active) -- C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe -- (CanalPlus.VOD [Auto | Running])
 SRV - [2008/07/25 11:17:02 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Frame​work\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_3​2 [On_Demand | Stopped])
 SRV - [2008/07/29 21:10:04 | 00,046,104 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\Microsoft.NET\Frame​work\v3.0\WPF\PresentationFont​Cache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
 SRV - [2009/03/24 11:40:42 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\GoogleUpda​te.exe -- (gupdate1c9ac649d02633a [Auto | Stopped])
 SRV - [2009/04/17 18:06:19 | 00,182,768 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe -- (gusvc [On_Demand | Stopped])
 SRV - [2008/04/14 04:33:38 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Bi​naries\pchsvc.dll -- (helpsvc [Auto | Running])
 SRV - [2008/07/29 19:24:50 | 00,881,664 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\Microsoft.NET\Frame​work\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
 SRV - [2009/01/06 14:06:24 | 00,536,872 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service [On_Demand | Stopped])
 SRV - [2008/07/29 19:16:38 | 00,132,096 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\Microsoft.NET\Frame​work\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
 SRV - [2007/08/24 04:19:12 | 00,443,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])
 SRV - [2006/10/26 15:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
 SRV - [2007/05/14 04:54:36 | 00,272,024 | ---- | M] () -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe -- (RichVideo [Auto | Running])
 SRV - [2006/11/03 10:59:14 | 00,918,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])
 SRV - [2007/10/29 13:27:04 | 00,587,096 | ---- | M] (Lavasoft AB) -- C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe -- (aawservice [Auto | Running])
 
 ========== Driver Services (SafeList) ==========
 
 DRV - [2009/02/05 23:05:11 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aa​vmker4.sys -- (Aavmker4 [System | Running])
 DRV - [2009/02/05 23:07:12 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\DRIVERS\as​wFsBlk.sys -- (aswFsBlk [Auto | Running])
 DRV - [2009/02/05 23:08:10 | 00,094,032 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\as​wmon2.sys -- (aswMon2 [Auto | Running])
 DRV - [2009/02/05 23:06:10 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\as​wRdr.sys -- (aswRdr [On_Demand | Running])
 DRV - [2009/02/05 23:07:23 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\as​wSP.sys -- (aswSP [System | Running])
 DRV - [2009/02/05 23:06:20 | 00,051,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\as​wTdi.sys -- (aswTdi [System | Running])
 DRV - [2006/02/21 21:46:26 | 01,505,792 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\DRIVERS\at​i2mtag.sys -- (ati2mtag [On_Demand | Running])
 DRV - [2008/04/17 14:12:54 | 00,015,464 | ---- | M] (GEAR Software Inc.) -- C:\WINDOWS\System32\DRIVERS\GE​ARAspiWDM.sys -- (GEARAspiWDM [On_Demand | Running])
 DRV - [2004/08/04 07:29:54 | 01,897,408 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nv​4_mini.sys -- (nv [On_Demand | Stopped])
 DRV - [2002/10/25 14:11:00 | 00,012,928 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv​ax.sys -- (nvax [On_Demand | Running])
 DRV - [2002/09/24 04:37:00 | 00,080,896 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\NV​ENET.sys -- (NVENET [On_Demand | Running])
 DRV - [2002/10/25 14:11:00 | 00,236,672 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv​apu.sys -- (nvnforce [On_Demand | Running])
 DRV - [2002/09/07 05:24:00 | 00,013,568 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\DRIVERS\nv​_agp.sys -- (nv_agp [Boot | Running])
 DRV - [2000/10/28 03:06:06 | 00,008,529 | R--- | M] (SONY) -- C:\WINDOWS\system32\DRIVERS\u1​pvcbs.sys -- (OEMBase [Boot | Running])
 DRV - [2000/10/28 03:07:58 | 00,253,875 | R--- | M] (SONY) -- C:\WINDOWS\System32\DRIVERS\u1​pvcsm.sys -- (OEMStream [On_Demand | Running])
 DRV - [2002/08/30 14:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\pt​ilink.sys -- (Ptilink [On_Demand | Running])
 DRV - [2007/10/18 00:11:00 | 00,056,448 | ---- | M] (SCM Microsystems Inc.) -- C:\WINDOWS\System32\DRIVERS\SC​R3XX2K.sys -- (SCR3XX2K [On_Demand | Running])
 DRV - [2008/04/13 18:39:15 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\System32\DRIVERS\se​cdrv.sys -- (Secdrv [On_Demand | Stopped])
 DRV - [2007/07/11 13:37:26 | 00,006,272 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\AW​RTPD.sys -- (Ad-Watch Real-Time Scanner [On_Demand | Running])
 DRV - [2007/08/07 12:56:58 | 00,009,344 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\NS​Driver.sys -- (Ad-Watch Connect Filter [On_Demand | Running])
 DRV - [2007/08/07 12:58:08 | 00,008,320 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\AW​RTRD.sys -- (Ad-Watch Registry Filter [On_Demand | Running])
 
 ========== Standard Registry (SafeList) ==========
 
 
 ========== Internet Explorer ==========
 
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Main,Default_Search_U​RL = http://go.microsoft.com/fwlink/?LinkId=54896
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Main,Default_Secondar​y_Page_URL =  [binary data]
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Main,Extensions Off Page = about:NoAdd-ons
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Main,Security Risk Page = about:SecurityRisk
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Search,CustomizeSearc​h = http://ie.search.msn.com/{SUB_ [...] chcust.htm
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Search,Default_Search​_URL = http://www.google.com/ie
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Search,SearchAssistan​t = http://www.google.com/ie
 
 
 IE - HKU\.DEFAULT\.DEFAULT\Software​\Microsoft\Windows\CurrentVers​ion\Internet Settings: "ProxyEnable" = 0
 
 IE - HKU\S-1-5-18\S-1-5-18\Software​\Microsoft\Windows\CurrentVers​ion\Internet Settings: "ProxyEnable" = 0
 
 IE - HKU\S-1-5-19\S-1-5-19\Software​\Microsoft\Windows\CurrentVers​ion\Internet Settings: "ProxyEnable" = 0
 
 IE - HKU\S-1-5-20\S-1-5-20\Software​\Microsoft\Windows\CurrentVers​ion\Internet Settings: "ProxyEnable" = 0
 
 IE - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004\SOFTWARE\M​icrosoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com/?fr=fp-yie8
 IE - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004\SOFTWARE\M​icrosoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
 IE - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004\SOFTWARE\M​icrosoft\Internet Explorer\Main,Search Page = http://www.google.com
 IE - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004\SOFTWARE\M​icrosoft\Internet Explorer\Main,SearchDefaultBra​nded = 1
 IE - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004\SOFTWARE\M​icrosoft\Internet Explorer\Main,SearchMigratedDe​faultName = Google
 IE - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004\SOFTWARE\M​icrosoft\Internet Explorer\Main,SearchMigratedDe​faultURL = http://www.google.com/search?q [...] f8&oe=utf8
 IE - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004\SOFTWARE\M​icrosoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com/?fr=fp-yie8
 IE - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004\SOFTWARE\M​icrosoft\Internet Explorer\Search,SearchAssistan​t = http://www.google.com/ie
 IE - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004\S-1-5-21-1​614895754-1957994488-725345543​-1004\Software\Microsoft\Windo​ws\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 IE - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004\S-1-5-21-1​614895754-1957994488-725345543​-1004\Software\Microsoft\Windo​ws\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
 ========== FireFox ==========
 
 FF - prefs.js..extensions.enabledIt​ems: {d10d0bf8-f5b5-c8b4-a8b2-2b987​9e08c5d}:1.1.1
 FF - prefs.js..extensions.enabledIt​ems: {b9db16a4-6edc-47ec-a1f4-b8629​2ed211d}:4.6.2
 FF - prefs.js..extensions.enabledIt​ems: illimitux@illimitux.net:2.0.2
 FF - prefs.js..extensions.enabledIt​ems: jiwack@akryus.net:2.3.3.9
 FF - prefs.js..extensions.enabledIt​ems: {20a82645-c095-46ed-80e3-08825​760534b}:0.0.0
 FF - prefs.js..extensions.enabledIt​ems: {972ce4c6-7e08-4474-a285-32081​98ce6fd}:3.0.13
 
 FF - HKLM\software\mozilla\Firefox\​Extensions\\{20a82645-c095-46e​d-80e3-08825760534b}: c:\WINDOWS\Microsoft.NET\Frame​work\v3.5\Windows Presentation Foundation\DotNetAssistantExte​nsion\ [2009/09/01 20:16:02 | 00,000,000 | ---D | M]
 FF - HKLM\software\mozilla\Mozilla Firefox 3.0.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/09/24 18:38:56 | 00,000,000 | ---D | M]
 FF - HKLM\software\mozilla\Mozilla Firefox 3.0.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/09/24 18:38:56 | 00,000,000 | ---D | M]
 
 [2009/05/29 15:38:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\maxime\Application Data\mozilla\Extensions
 [2009/05/29 15:38:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\maxime\Application Data\mozilla\Extensions\{ec803​0f7-c20a-464f-9b0e-13a3a9e9738​4}
 [2009/09/24 18:49:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\maxime\Application Data\mozilla\Firefox\Profiles\​5bajyoij.default\extensions
 [2009/08/27 09:46:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\maxime\Application Data\mozilla\Firefox\Profiles\​5bajyoij.default\extensions\{b​9db16a4-6edc-47ec-a1f4-b86292e​d211d}
 [2009/08/27 09:46:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\maxime\Application Data\mozilla\Firefox\Profiles\​5bajyoij.default\extensions\{d​10d0bf8-f5b5-c8b4-a8b2-2b9879e​08c5d}
 [2009/05/29 15:46:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\maxime\Application Data\mozilla\Firefox\Profiles\​5bajyoij.default\extensions\il​limitux@illimitux.net
 [2009/05/29 15:41:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\maxime\Application Data\mozilla\Firefox\Profiles\​5bajyoij.default\extensions\ji​wack@akryus.net
 [2009/05/29 15:38:47 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
 [2009/09/24 18:38:40 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7​e08-4474-a285-3208198ce6fd}
 [2009/09/24 18:38:38 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirp​rovider.dll
 [2009/09/24 18:38:38 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dl​l
 [2009/09/24 18:38:46 | 00,065,528 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
 [2009/09/24 18:38:49 | 00,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-f​rance.xml
 [2009/09/24 18:38:49 | 00,000,757 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-fra​nce.xml
 [2009/09/24 18:38:49 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.x​ml
 [2009/09/24 18:38:49 | 00,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDIC​O-fr.xml
 [2009/09/24 18:38:49 | 00,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedi​a-fr.xml
 [2009/09/24 18:38:49 | 00,000,652 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-fr​ance.xml
 
 O1 HOSTS File: (790 bytes) - C:\WINDOWS\System32\drivers\et​c\Hosts
 O1 - Hosts: 127.0.0.1       localhost
 O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695E​CA05670} - No CLSID value found.
 O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578​C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\​AcroIEHelperShim.dll (Adobe Systems Incorporated)
 O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988​571CECB} - No CLSID value found.
 O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400​523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
 O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-51647​60863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
 O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
 O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B​5AD205D} - C:\Program Files\Google\GoogleToolbarNoti​fier\5.2.4204.1700\swg.dll (Google Inc.)
 O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02​E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B​7C5AC242193BB3E.dll (Google Inc.)
 O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
 O3 - HKLM\..\Toolbar: (&RoboForm) - {724d43a0-0d85-11d4-9908-00400​523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
 O3 - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004\..\Toolbar​\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-00902​7A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
 O3 - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004\..\Toolbar​\WebBrowser: (&RoboForm) - {724D43A0-0D85-11D4-9908-00400​523E39A} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
 O4 - HKLM..\Run: [\\BUREAU\EPSON Stylus Photo R220 Series] C:\WINDOWS\System32\spool\DRIV​ERS\W32X86\3\E_FATIAIE.EXE (SEIKO EPSON CORPORATION)
 O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
 O4 - HKLM..\Run: [CHotkey] C:\WINDOWS\mHotkey.exe (Chicony)
 O4 - HKLM..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Bi​naries\MSConfig.exe (Microsoft Corporation)
 O4 - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.​exe (IncrediMail, Ltd.)
 O4 - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004..\Run: [ITD7] C:\Program Files\Steganos Internet Trace Destructor 7\ITD7.exe ()
 O4 - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004..\Run: [Magnifying Glass] C:\Program Files\Virtual Magnifying Glass\Magnifying Glass.exe ()
 O4 - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.​exe ()
 O4 - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004..\Run: [RoboForm] C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe (Siber Systems)
 O4 - HKU\.DEFAULT..\RunOnce: [ITD7] C:\Program Files\Steganos Internet Trace Destructor 7\itd7.exe ()
 O4 - HKU\S-1-5-18..\RunOnce: [ITD7] C:\Program Files\Steganos Internet Trace Destructor 7\itd7.exe ()
 O4 - HKU\S-1-5-19..\RunOnce: [ITD7] C:\Program Files\Steganos Internet Trace Destructor 7\itd7.exe ()
 O4 - HKU\S-1-5-20..\RunOnce: [ITD7] C:\Program Files\Steganos Internet Trace Destructor 7\itd7.exe ()
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Expl​orer: HonorAutoRunSetting = 1
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Syst​em: dontdisplaylastusername = 0
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Syst​em: legalnoticecaption =
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Syst​em: legalnoticetext =
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Syst​em: shutdownwithoutlogon = 1
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Syst​em: undockwithoutlogon = 1
 O7 - HKU\.DEFAULT\SOFTWARE\Microsof​t\Windows\CurrentVersion\polic​ies\Explorer: NoDriveTypeAutoRun = 145
 O7 - HKU\S-1-5-18\SOFTWARE\Microsof​t\Windows\CurrentVersion\polic​ies\Explorer: NoDriveTypeAutoRun = 145
 O7 - HKU\S-1-5-19\SOFTWARE\Microsof​t\Windows\CurrentVersion\polic​ies\Explorer: NoDriveTypeAutoRun = 145
 O7 - HKU\S-1-5-20\SOFTWARE\Microsof​t\Windows\CurrentVersion\polic​ies\Explorer: NoDriveTypeAutoRun = 145
 O7 - HKU\S-1-5-21-1614895754-195799​4488-725345543-1004\SOFTWARE\M​icrosoft\Windows\CurrentVersio​n\policies\Explorer: NoDriveTypeAutoRun = 145
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
 O8 - Extra context menu item: Enregistrer le formulaire - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.h​tml ()
 O8 - Extra context menu item: Personnaliser le menu - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeI​EMenu.html ()
 O8 - Extra context menu item: Remplir le formulaire - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.​html ()
 O9 - Extra Button: Remplir - {320AF880-6646-11D3-ABEE-C5DBF​3571F46} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.​html ()
 O9 - Extra 'Tools' menuitem : Remplir le formulaire - {320AF880-6646-11D3-ABEE-C5DBF​3571F46} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.​html ()
 O9 - Extra Button: Enregistrer - {320AF880-6646-11D3-ABEE-C5DBF​3571F49} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.h​tml ()
 O9 - Extra 'Tools' menuitem : Enregistrer le formulaire - {320AF880-6646-11D3-ABEE-C5DBF​3571F49} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.h​tml ()
 O9 - Extra Button: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400​523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolba​r.html ()
 O9 - Extra 'Tools' menuitem : Barre RoboForm - {724d43aa-0d85-11d4-9908-00400​523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolba​r.html ()
 O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C5​71A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
 O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba3​8496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
 O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
 O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
 O10 - NameSpace_Catalog5\Catalog_Ent​ries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
 O10 - Protocol_Catalog9\Catalog_Entr​ies\000000000004 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation)
 O10 - Protocol_Catalog9\Catalog_Entr​ies\000000000005 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation)
 O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
 O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF​33E833C} http://www.update.microsoft.co [...] 3064256072 (WUWebControl Class)
 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA​91D2FC3} http://update.microsoft.com/mi [...] 3071805312 (MUWebControl Class)
 O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E​0DC46EF} http://fichiers.touslesdrivers [...] _1_1_0.cab (Reg Error: Key error.)
 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-44455​3540000} http://download.macromedia.com [...] wflash.cab (Shockwave Flash Object)
 O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B68​7409848} http://www.mypix.com/fr/fr/imp [...] oader4.cab (Image Uploader Control)
 O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes​\dajava.cab (Reg Error: Key error.)
 O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes​\xmldso.cab (Reg Error: Key error.)
 O18 - Protocol\Handler\http\0x000000​01 {E1D2BF42-A96B-11d1-9C6B-0000F​875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F​875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\https\0x00000​001 {E1D2BF42-A96B-11d1-9C6B-0000F​875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F​875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\ipp - No CLSID value found
 O18 - Protocol\Handler\ipp\0x0000000​1 {E1D2BF42-A96B-11d1-9C6B-0000F​875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305​202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.80​50.1202.dll (Microsoft Corporation)
 O18 - Protocol\Handler\msdaipp - No CLSID value found
 O18 - Protocol\Handler\msdaipp\0x000​00001 {E1D2BF42-A96B-11d1-9C6B-0000F​875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F​875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04​f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
 O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305​202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.80​50.1202.dll (Microsoft Corporation)
 O18 - Protocol\Filter:  - text/xml - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
 O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\Ati2evxx.d​ll (ATI Technologies Inc.)
 O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
 O31 - SafeBoot: AlternateShell - cmd.exe
 O32 - HKLM CDRom: AutoRun - 1
 O32 - AutoRun File - [2009/01/27 15:43:33 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
 O33 - MountPoints2\{eba5d5b2-ec7e-11​dd-adc1-000c6e716bb7}\Shell\Au​toRun\command - "" = J:\PortableRoboForm.exe -- File not found
 O33 - MountPoints2\{eba5d5b2-ec7e-11​dd-adc1-000c6e716bb7}\Shell\Ro​boForm2Go\command - "" = J:\PortableRoboForm.exe -- File not found
 O34 - HKLM BootExecute: (autocheck) -  File not found
 O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.ex​e (Microsoft Corporation)
 O34 - HKLM BootExecute: (*) -  File not found
 O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.e​xe ()
 O35 - comfile [open] -- "%1" %* File not found
 O35 - exefile [open] -- "%1" %* File not found
 
 ========== Files/Folders - Created Within 30 Days ==========
 
 [2009/10/06 17:44:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
 [2009/09/07 10:57:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\maxime\Application Data\vlc
 [2009/10/06 17:43:39 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Wise Installation Wizard
 [2009/09/12 20:15:55 | 00,000,000 | ---D | C] -- C:\Program Files\Ipulp
 [2009/10/06 17:44:02 | 00,000,000 | ---D | C] -- C:\Program Files\Lavasoft
 [2009/09/07 10:55:56 | 00,000,000 | ---D | C] -- C:\Program Files\VideoLAN
 [2009/10/06 18:22:04 | 00,520,704 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\maxime\Bureau\OTL.exe
 [2009/09/10 07:26:44 | 00,153,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t​riedit.dll
 
 ========== Files - Modified Within 30 Days ==========
 
 [2009/10/06 18:22:06 | 00,520,704 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\maxime\Bureau\OTL.exe
 [2009/10/06 18:07:10 | 00,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateT​askMachineUA.job
 [2009/10/06 17:50:25 | 00,000,592 | ---- | M] () -- C:\WINDOWS\win.ini
 [2009/10/06 17:50:25 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
 [2009/10/06 17:50:25 | 00,000,216 | RHS- | M] () -- C:\boot.ini
 [2009/10/06 17:32:46 | 00,274,560 | ---- | M] () -- C:\Documents and Settings\maxime\Mes documents\cc_20091006_173239.r​eg
 [2009/10/06 17:32:01 | 00,071,600 | ---- | M] () -- C:\Documents and Settings\maxime\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
 [2009/10/06 17:28:28 | 00,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateT​askMachineCore.job
 [2009/10/06 17:28:21 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
 [2009/10/06 17:28:14 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
 [2009/10/06 17:28:11 | 00,272,576 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.D​AT
 [2009/10/06 17:21:41 | 00,000,434 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Syn​chronization-{0BE1403E-F0ED-41​B5-B0D1-A489A592A71E}.job
 [2009/10/06 13:31:20 | 00,000,014 | ---- | M] () -- C:\WINDOWS\popcinfo.dat
 [2009/10/06 07:49:42 | 00,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
 [2009/09/28 22:50:38 | 59,119,808 | ---- | M] () -- C:\Documents and Settings\maxime\Bureau\France.​Dimanche.n3291.pdf
 [2009/09/23 10:55:46 | 00,002,575 | ---- | M] () -- C:\Documents and Settings\maxime\Bureau\Microso​ft Office Word 2007.lnk
 [2009/09/22 19:41:34 | 00,010,878 | ---- | M] () -- C:\Documents and Settings\maxime\Mes documents\PRISE   FORCE.docx
 [2009/09/18 18:41:40 | 23,954,583 | ---- | M] () -- C:\Documents and Settings\maxime\Bureau\Closer.​n222.pdf
 [2009/09/18 18:40:50 | 40,207,790 | ---- | M] () -- C:\Documents and Settings\maxime\Bureau\Ici.Par​is.n3350.pdf
 [2009/09/18 18:39:50 | 38,009,484 | ---- | M] () -- C:\Documents and Settings\maxime\Bureau\60 millions de consommateurs Hors Serie Expert n°104.pdf
 [2009/09/15 15:36:44 | 00,007,680 | ---- | M] () -- C:\Documents and Settings\maxime\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E​0D61DEA3FDF.ini
 [2009/09/13 14:04:18 | 00,000,592 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Ipulp.lnk
 [2009/09/10 18:00:05 | 00,011,226 | ---- | M] () -- C:\Documents and Settings\maxime\Mes documents\MONSIEUR SANCHEZ PASCA2.docx
 [2009/09/08 16:44:23 | 00,000,426 | ---- | M] () -- C:\Documents and Settings\maxime\Bureau\MUSIQUE​.lnk
 [2009/09/07 17:06:09 | 00,010,923 | ---- | M] () -- C:\Documents and Settings\maxime\Mes documents\MONSIEUR et MADAME SANCHEZ PHILIPPE.docx
 [2009/09/07 11:00:44 | 00,001,360 | ---- | M] () -- C:\Documents and Settings\maxime\Bureau\TELEVIS​ION.lnk
 [2009/09/07 10:56:28 | 00,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\VLC media player.lnk
 
 ========== Files - No Company Name ==========
 [2009/10/06 17:32:42 | 00,274,560 | ---- | C] () -- C:\Documents and Settings\maxime\Mes documents\cc_20091006_173239.r​eg
 [2009/10/01 08:37:20 | 59,119,808 | ---- | C] () -- C:\Documents and Settings\maxime\Bureau\France.​Dimanche.n3291.pdf
 [2009/09/22 19:41:34 | 00,010,878 | ---- | C] () -- C:\Documents and Settings\maxime\Mes documents\PRISE   FORCE.docx
 [2009/09/18 18:43:27 | 23,954,583 | ---- | C] () -- C:\Documents and Settings\maxime\Bureau\Closer.​n222.pdf
 [2009/09/18 18:43:04 | 38,009,484 | ---- | C] () -- C:\Documents and Settings\maxime\Bureau\60 millions de consommateurs Hors Serie Expert n°104.pdf
 [2009/09/18 18:42:40 | 40,207,790 | ---- | C] () -- C:\Documents and Settings\maxime\Bureau\Ici.Par​is.n3350.pdf
 [2009/09/12 20:15:56 | 00,000,592 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Ipulp.lnk
 [2009/09/10 18:00:04 | 00,011,226 | ---- | C] () -- C:\Documents and Settings\maxime\Mes documents\MONSIEUR SANCHEZ PASCA2.docx
 [2009/09/08 16:44:23 | 00,000,426 | ---- | C] () -- C:\Documents and Settings\maxime\Bureau\MUSIQUE​.lnk
 [2009/09/07 17:06:09 | 00,010,923 | ---- | C] () -- C:\Documents and Settings\maxime\Mes documents\MONSIEUR et MADAME SANCHEZ PHILIPPE.docx
 [2009/09/07 10:56:28 | 00,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\VLC media player.lnk
 [2009/03/18 23:54:03 | 00,007,680 | ---- | C] () -- C:\Documents and Settings\maxime\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E​0D61DEA3FDF.ini
 [2009/01/29 18:35:31 | 00,000,040 | ---- | C] () -- C:\WINDOWS\NAVIGMA.INI
 [2009/01/27 18:49:00 | 00,000,129 | ---- | C] () -- C:\Documents and Settings\maxime\Local Settings\Application Data\fusioncache.dat
 [2009/01/27 16:18:54 | 00,071,600 | ---- | C] () -- C:\Documents and Settings\maxime\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
 [2009/01/27 16:06:51 | 00,000,360 | ---- | C] () -- C:\WINDOWS\CNYHKey.ini
 [2009/01/27 16:06:50 | 00,049,152 | ---- | C] () -- C:\WINDOWS\CNYUSB.dll
 [2009/01/27 16:06:50 | 00,011,776 | ---- | C] () -- C:\WINDOWS\HIDMNT.dll
 [2009/01/27 16:06:50 | 00,005,120 | ---- | C] () -- C:\WINDOWS\HKCYDLL.dll
 [2009/01/27 15:53:35 | 06,394,558 | -H-- | C] () -- C:\Documents and Settings\maxime\Local Settings\Application Data\IconCache.db
 [2009/01/27 15:46:58 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\maxime\Application Data\desktop.ini
 [2009/01/27 15:34:24 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\desktop.ini
 [2004/12/20 12:08:28 | 00,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dl​l
 [2004/12/20 12:03:26 | 00,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.d​ll
 [2003/08/18 12:36:08 | 00,018,253 | ---- | C] () -- C:\WINDOWS\System32\ssnvfx.ini
 [2002/12/14 23:46:02 | 00,237,568 | ---- | C] () -- C:\WINDOWS\System32\oggDS.dll
 [2002/12/14 23:46:02 | 00,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
 [2002/12/14 23:46:02 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
 [2002/12/14 22:46:04 | 00,921,600 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.​dll
 [2002/11/15 14:11:26 | 00,077,824 | ---- | C] () -- C:\WINDOWS\System32\MMSwitch.d​ll
 [2002/08/30 14:00:00 | 00,000,592 | ---- | C] () -- C:\WINDOWS\win.ini
 [2002/08/30 14:00:00 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
 
 ========== Alternate Data Streams ==========
 
 @Alternate Data Stream - 150 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B3D74A13
 < End of report >

  1. homepage
bobette-marlow
Assidu (de 10 000 à 19 999 messages postés)
  1. Posté le 06/10/2009 à 18:42:19  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
poste le rapport de MBAM pendant que je jette un oeil aux rapports OTL.


---------------
>>Surfons Couverts<< en Tutos
athlon63
  1. Posté le 06/10/2009 à 18:50:53  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
re !!

 Malewarebytes' Antimalware  est installer sur mon pc depuis longtemps
 le raport est negatif (aucune infection trouvée)
 en fait quand je desire acceder au site en question (credit agricole)
 ca passe par la http://www.denyall.com/
 et sur la page j ai Security alert! Alert #4! denyall securit solutions

(Publicité)
  1. homepage
bobette-marlow
Assidu (de 10 000 à 19 999 messages postés)
  1. Posté le 06/10/2009 à 19:15:04  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
MBAM doit etre mis à jour avant chaque scan, l'as-tu fait ?

 réinitialise ton internet explorer,outils, options internet,avancé,
 réinitialiser.


---------------
>>Surfons Couverts<< en Tutos
athlon63
  1. Posté le 06/10/2009 à 19:29:16  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
oui je met a jour Malwarebytes' Anti-Malware a chaque fois
 j ai desactivé le peu d applications qui se lancent au demarrage  
 cela disparait avec windows en mode sans echec
 reinitialisée IE
 desactivés les modules
 comme le probleme datait de 3 ou 4 jours j avais fait une restauration systeme fin septembre
 je viens d en refaire une autre a la mi septembre et le probleme a l air d avoir disparu !!
 mystere

  1. homepage
bobette-marlow
Assidu (de 10 000 à 19 999 messages postés)
  1. Posté le 06/10/2009 à 21:01:30  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
tu peux supprimer OTL. ;)


---------------
>>Surfons Couverts<< en Tutos
(Publicité)
hervea
  1. Posté le 20/04/2013 à 21:59:47  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
J'ai un site bloqué et le message security alerte 4 qui apparait.

 Ci-dessous le fichier OTL.txt et Extras.txt générés par OTL

 Merci de m'aider à me débarrasser de ce virus

 OTL logfile created on: 4/20/2013 6:11:13 PM - Run 1
 OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Marie\Downloads
 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
 Internet Explorer (Version = 9.10.9200.16540)
 Locale: 00000409 | Country: France | Language: FRA | Date Format: dd/MM/yyyy
 
 5.87 Gb Total Physical Memory | 4.23 Gb Available Physical Memory | 72.03% Memory free
 11.73 Gb Paging File | 9.78 Gb Available in Paging File | 83.40% Paging File free
 Paging file location(s): ?:\pagefile.sys [binary data]
 
 %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
 Drive C: | 917.56 Gb Total Space | 843.76 Gb Free Space | 91.96% Space Free | Partition Type: NTFS
 Drive D: | 931.51 Gb Total Space | 657.47 Gb Free Space | 70.58% Space Free | Partition Type: NTFS
 Drive E: | 13.85 Gb Total Space | 1.71 Gb Free Space | 12.33% Space Free | Partition Type: NTFS
 
 Computer Name: MAISON | User Name: Marie | Logged in as Administrator.
 Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
 Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
 ========== Processes (SafeList) ==========
 
 PRC - [2013/04/20 18:10:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Marie\Downloads\OTL.e​xe
 PRC - [2012/12/27 00:22:48 | 000,308,368 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.e​xe
 PRC - [2012/10/04 17:34:36 | 000,115,032 | R--- | M] (SweetIM Technologies Ltd.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetI​M.exe
 PRC - [2012/08/15 20:08:34 | 000,231,768 | ---- | M] (SweetIM Technologies Ltd.) -- C:\Program Files (x86)\SweetIM\Communicator\Swe​etPacksUpdateManager.exe
 PRC - [2012/07/26 23:08:58 | 000,109,064 | ---- | M] (Wajam) -- C:\Program Files (x86)\Wajam\Updater\WajamUpdat​er.exe
 PRC - [2010/10/26 12:24:08 | 001,765,484 | ---- | M] (IVT Corporation) -- C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSol​eilCS.exe
 PRC - [2010/10/25 16:38:36 | 000,319,574 | ---- | M] (IVT Corporation) -- C:\Program Files (x86)\IVT Corporation\BlueSoleil\BtTray.​exe
 PRC - [2010/09/28 18:09:28 | 001,119,768 | ---- | M] (PDF Complete Inc) -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe
 PRC - [2010/04/23 22:00:00 | 000,514,232 | ---- | M] (EasyBits Software AS) -- C:\Windows\SysWOW64\ezSharedSv​cHost.exe
 PRC - [2010/03/04 06:16:06 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.ex​e
 PRC - [2010/03/04 06:16:04 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
 PRC - [2009/10/01 06:02:50 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
 PRC - [2009/10/01 06:02:48 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
 PRC - [2008/11/20 20:47:28 | 000,062,768 | ---- | M] (Hewlett-Packard) -- C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
 
 
 ========== Modules (No Company Name) ==========
 
 MOD - [2013/02/14 19:46:52 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Window​s.Forms\cb562e2e4f74ae607f1186​f6ec50cec7\System.Windows.Form​s.ni.dll
 MOD - [2013/01/10 15:08:58 | 000,452,608 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\IAStorUtil\f7​cb3ae5de64f8cbde3ccc57c780743a​\IAStorUtil.ni.dll
 MOD - [2013/01/10 09:56:30 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Runtim​e.Remo#\90b89f6e8032310e9ac72a​309fd49e83\System.Runtime.Remo​ting.ni.dll
 MOD - [2013/01/10 09:56:06 | 001,592,832 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Drawin​g\eead6629e384a5b69f9ae35284b7​eeed\System.Drawing.ni.dll
 MOD - [2013/01/10 09:55:57 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\WindowsBase\c​f827fe7bc99d9bcf0ba3621054ef52​7\WindowsBase.ni.dll
 MOD - [2013/01/10 09:55:53 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Xml\f6​87c43e9fdec031988b33ae722c4613​\System.Xml.ni.dll
 MOD - [2013/01/10 09:55:50 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System\369f8b​dca364e2b4936d18dea582912c\Sys​tem.ni.dll
 MOD - [2013/01/10 09:55:50 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Config​uration\195a77fcc6206f8bb35d41​9ff2cf0d72\System.Configuratio​n.ni.dll
 MOD - [2013/01/10 09:55:45 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\mscorlib\7150​b9136fad5b79e88f6c7f9d3d2c39\m​scorlib.ni.dll
 MOD - [2011/01/17 21:42:01 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\S​ystem.Runtime.Remoting.resourc​es\2.0.0.0_fr_b77a5c561934e089​\System.Runtime.Remoting.resou​rces.dll
 MOD - [2010/11/13 01:52:13 | 000,311,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\m​scorlib.resources\2.0.0.0_fr_b​77a5c561934e089\mscorlib.resou​rces.dll
 
 
 ========== Services (SafeList) ==========
 
 SRV:64bit: - [2013/01/27 12:34:32 | 000,379,360 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
 SRV:64bit: - [2013/01/27 12:34:32 | 000,022,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
 SRV:64bit: - [2010/08/06 05:51:08 | 000,291,896 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe -- (HPClientSvc)
 SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
 SRV - [2013/03/12 21:39:53 | 000,253,656 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\F​lash\FlashPlayerUpdateService.​exe -- (AdobeFlashPlayerUpdateSvc)
 SRV - [2012/07/26 23:08:58 | 000,109,064 | ---- | M] (Wajam) [Auto | Running] -- C:\Program Files (x86)\Wajam\Updater\WajamUpdat​er.exe -- (WajamUpdater)
 SRV - [2010/10/26 12:24:08 | 001,765,484 | ---- | M] (IVT Corporation) [Auto | Running] -- C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSol​eilCS.exe -- (BlueSoleilCS)
 SRV - [2010/10/25 16:40:36 | 000,192,000 | ---- | M] (IVT Corporation) [On_Demand | Running] -- C:\Program Files (x86)\IVT Corporation\BlueSoleil\BsHelpC​S.exe -- (BsHelpCS)
 SRV - [2010/10/22 14:08:18 | 001,039,360 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\Hp\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
 SRV - [2010/09/28 18:09:28 | 001,119,768 | ---- | M] (PDF Complete Inc) [Auto | Running] -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe -- (pdfcDispatcher)
 SRV - [2010/06/19 03:59:12 | 000,246,520 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService)
 SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Frame​work\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_3​2)
 SRV - [2010/03/04 06:16:06 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.ex​e -- (IAStorDataMgrSvc)
 SRV - [2009/10/01 06:02:50 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
 SRV - [2009/10/01 06:02:48 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
 SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Frame​work\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_3​2)
 
 
 ========== Driver Services (SafeList) ==========
 
 DRV:64bit: - [2013/01/20 16:59:04 | 000,130,008 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\N​isDrvWFP.sys -- (NisDrv)
 DRV:64bit: - [2012/03/01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\f​s_rec.sys -- (Fs_Rec)
 DRV:64bit: - [2011/11/10 19:32:02 | 000,115,272 | ---- | M] (MotioninJoy) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\M​ijXfilt.sys -- (MotioninJoyXFilter)
 DRV:64bit: - [2011/03/11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\a​mdsata.sys -- (amdsata)
 DRV:64bit: - [2011/03/11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\a​mdxata.sys -- (amdxata)
 DRV:64bit: - [2010/11/20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\H​pSAMD.sys -- (HpSAMD)
 DRV:64bit: - [2010/11/20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\T​sUsbFlt.sys -- (TsUsbFlt)
 DRV:64bit: - [2010/09/03 08:59:26 | 000,349,800 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\R​t64win7.sys -- (RTL8167)
 DRV:64bit: - [2010/08/26 22:29:30 | 000,025,352 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\b​tcombus.sys -- (BTCOMBUS)
 DRV:64bit: - [2010/08/26 22:29:28 | 000,029,448 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\b​tcomport.sys -- (BTCOM)
 DRV:64bit: - [2010/08/19 20:24:34 | 000,074,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\x​usb21.sys -- (xusb21)
 DRV:64bit: - [2010/08/18 23:19:46 | 000,020,488 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\b​tnetdrv.sys -- (BT)
 DRV:64bit: - [2010/07/22 05:57:22 | 001,002,848 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\n​etr28x.sys -- (netr28x)
 DRV:64bit: - [2010/06/24 12:35:04 | 000,042,888 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b​tcusb.sys -- (Btcsrusb)
 DRV:64bit: - [2010/06/22 03:07:38 | 000,131,688 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\n​vhda64v.sys -- (NVHDA)
 DRV:64bit: - [2010/04/06 19:33:10 | 000,030,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\b​tnetBus.sys -- (btnetBUs)
 DRV:64bit: - [2010/04/06 19:32:48 | 000,027,016 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\I​vtBtBus.sys -- (IvtBtBUs)
 DRV:64bit: - [2010/04/06 19:32:46 | 000,023,944 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\B​tHidBus.sys -- (BtHidBus)
 DRV:64bit: - [2010/03/04 04:51:40 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\i​aStor.sys -- (iaStor)
 DRV:64bit: - [2009/09/17 22:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\H​ECIx64.sys -- (HECIx64)
 DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\a​mdsbs.sys -- (amdsbs)
 DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\l​si_sas2.sys -- (LSI_SAS2)
 DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s​texstor.sys -- (stexstor)
 DRV:64bit: - [2009/07/14 02:10:47 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\r​ootmdm.sys -- (ROOTMODEM)
 DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\e​vbda.sys -- (ebdrv)
 DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b​xvbda.sys -- (b06bdrv)
 DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b​57nd60a.sys -- (b57nd60a)
 DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\h​cw85cir.sys -- (hcw85cir)
 DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wi​mmount.sys -- (WIMMount)
 
 
 ========== Standard Registry (SafeList) ==========
 
 
 ========== Internet Explorer ==========
 
 IE:64bit: - HKLM\..\SearchScopes,DefaultSc​ope = {6A1806CD-94D4-4689-BA73-E35EA​1EA9990}
 IE:64bit: - HKLM\..\SearchScopes\{2fa28606​-de77-4029-af96-b231e3b8f827}: "URL" = http://eu.ask.com/web?q={searc [...] s&o=HPDTDF
 IE:64bit: - HKLM\..\SearchScopes\{6A1806CD​-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q [...] urceid=ie7
 IE:64bit: - HKLM\..\SearchScopes\{b7fca997​-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://fr.search.yahoo.com/sea [...] ype=HPDTDF
 IE:64bit: - HKLM\..\SearchScopes\{d43b3890​-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://fr.wikipedia.org/wiki/S [...] archTerms}
 IE:64bit: - HKLM\..\SearchScopes\{d944bb61​-2e34-4dbf-a683-47e505c587dc}: "URL" = http://rover.ebay.com/rover/1/ [...] e=Desktops
 IE:64bit: - HKLM\..\SearchScopes\{ec29edf6​-ad3c-4e1c-a087-d6cb81400c43}: "URL" = http://www.bing.com/search?q={ [...] -SearchBox
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
 IE - HKLM\..\SearchScopes,DefaultSc​ope = {6A1806CD-94D4-4689-BA73-E35EA​1EA9990}
 IE - HKLM\..\SearchScopes\{2fa28606​-de77-4029-af96-b231e3b8f827}: "URL" = http://eu.ask.com/web?q={searc [...] s&o=HPDTDF
 IE - HKLM\..\SearchScopes\{6A1806CD​-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q [...] urceid=ie7
 IE - HKLM\..\SearchScopes\{b7fca997​-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://fr.search.yahoo.com/sea [...] ype=HPDTDF
 IE - HKLM\..\SearchScopes\{d43b3890​-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://fr.wikipedia.org/wiki/S [...] archTerms}
 IE - HKLM\..\SearchScopes\{d944bb61​-2e34-4dbf-a683-47e505c587dc}: "URL" = http://rover.ebay.com/rover/1/ [...] e=Desktops
 IE - HKLM\..\SearchScopes\{ec29edf6​-ad3c-4e1c-a087-d6cb81400c43}: "URL" = http://www.bing.com/search?q={ [...] -SearchBox
 
 IE - HKCU\SOFTWARE\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPDSK/3
 IE - HKCU\SOFTWARE\Microsoft\Intern​et Explorer\Main,Start Page = http://www.orange.fr/portail
 IE - HKCU\..\SearchScopes,DefaultSc​ope = {6A1806CD-94D4-4689-BA73-E35EA​1EA9990}
 IE - HKCU\..\SearchScopes\{2fa28606​-de77-4029-af96-b231e3b8f827}: "URL" = http://eu.ask.com/web?q={searc [...] s&o=HPDTDF
 IE - HKCU\..\SearchScopes\{6A1806CD​-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q [...] NI_frFR516
 IE - HKCU\..\SearchScopes\{b7fca997​-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://fr.search.yahoo.com/sea [...] ype=HPDTDF
 IE - HKCU\..\SearchScopes\{d43b3890​-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://fr.wikipedia.org/wiki/S [...] archTerms}
 IE - HKCU\..\SearchScopes\{d944bb61​-2e34-4dbf-a683-47e505c587dc}: "URL" = http://rover.ebay.com/rover/1/ [...] e=Desktops
 IE - HKCU\..\SearchScopes\{ec29edf6​-ad3c-4e1c-a087-d6cb81400c43}: "URL" = http://www.bing.com/search?q={ [...] -SearchBox
 IE - HKCU\..\SearchScopes\{F42D4712​-298F-4502-8668-7B9940C3FB00}: "URL" = http://www.basicseek.com/?prt= [...] archTerms}
 IE - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 ========== FireFox ==========
 
 FF:64bit: - HKLM\Software\MozillaPlugins\@​microsoft.com/GENUINE: disabled File not found
 FF:64bit: - HKLM\Software\MozillaPlugins\@​Microsoft.com/NpCtrl,version=1​.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl​.dll ( Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@​microsoft.com/GENUINE: disabled File not found
 FF - HKLM\Software\MozillaPlugins\@​Microsoft.com/NpCtrl,version=1​.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl​.dll ( Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@​microsoft.com/WLPG,version=15.​4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@​tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.135​\npGoogleUpdate3.dll (Google Inc.)
 FF - HKLM\Software\MozillaPlugins\@​tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.135​\npGoogleUpdate3.dll (Google Inc.)
 
 FF - HKEY_LOCAL_MACHINE\software\mo​zilla\Firefox\Extensions\\smar​twebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/01/05 19:13:31 | 000,000,000 | ---D | M]
 FF - HKEY_CURRENT_USER\software\moz​illa\Firefox\Extensions\\smart​webprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/01/05 19:13:31 | 000,000,000 | ---D | M]
 
 
 O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\e​tc\hosts
 O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
 O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695E​CA05670} - No CLSID value found.
 O2 - BHO: (Wajam) - {A7A6995D-6EE1-4FD1-A258-49395​D5BF99C} - C:\Program Files (x86)\Wajam\IE\priam_bho.dll (Wajam)
 O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4​151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dl​l (Yontoo LLC)
 O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
 O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-00902​7A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
 O4:64bit: - HKLM..\Run: [hpsysdrv] c:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe (Hewlett-Packard)
 O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
 O4 - HKLM..\Run: []  File not found
 O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
 O4 - HKLM..\Run: [BtTray] C:\Program Files (x86)\IVT Corporation\BlueSoleil\BtTray.​exe (IVT Corporation)
 O4 - HKLM..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe File not found
 O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
 O4 - HKLM..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe (PDF Complete Inc)
 O4 - HKLM..\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetI​M.exe (SweetIM Technologies Ltd.)
 O4 - HKLM..\Run: [Sweetpacks Communicator] C:\Program Files (x86)\SweetIM\Communicator\Swe​etPacksUpdateManager.exe (SweetIM Technologies Ltd.)
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Expl​orer: NoActiveDesktop = 1
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Expl​orer: NoActiveDesktopChanges = 1
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Expl​orer: EnableShellExecuteHooks = 1
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Syst​em: ConsentPromptBehaviorAdmin = 0
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Syst​em: ConsentPromptBehaviorUser = 3
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Syst​em: EnableLUA = 0
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Syst​em: PromptOnSecureDesktop = 0
 O7 - HKCU\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Expl​orer: NoDriveTypeAutoRun = 145
 O1364bit: - gopher Prefix: missing
 O13 - gopher Prefix: missing
 O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488​ABDDC6B} http://appldnld.apple.com.edge [...] plugin.cab (QuickTime Object)
 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-44455​3540000} http://fpdownload2.macromedia. [...] wflash.cab (Shockwave Flash Object)
 O17 - HKLM\System\CCS\Services\Tcpip​\Parameters: DhcpNameServer = 192.168.1.1
 O17 - HKLM\System\CCS\Services\Tcpip​\Parameters\Interfaces\{7B207D​73-5FE0-40EA-9272-A77D4FF99168​}: DhcpNameServer = 192.168.1.1
 O18:64bit: - Protocol\Handler\livecall - No CLSID value found
 O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
 O18:64bit: - Protocol\Handler\msnim - No CLSID value found
 O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
 O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
 O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C​7DD7F5D} - C:\Windows\SysWOW64\skype4com.​dll (Skype Technologies)
 O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D​022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\​OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
 O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
 O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.​exe) - C:\Windows\SysNative\userinit.​exe (Microsoft Corporation)
 O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.e​xe (Microsoft Corporation)
 O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.​exe) - C:\Windows\SysWOW64\userinit.e​xe (Microsoft Corporation)
 O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA0​05127ED} - No CLSID value found.
 O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA0​05127ED} - No CLSID value found.
 O32 - HKLM CDRom: AutoRun - 1
 O34 - HKLM BootExecute: (autocheck autochk *)
 O35:64bit: - HKLM\..comfile [open] -- "%1" %*
 O35:64bit: - HKLM\..exefile [open] -- "%1" %*
 O35 - HKLM\..comfile [open] -- "%1" %*
 O35 - HKLM\..exefile [open] -- "%1" %*
 O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
 O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
 O37 - HKLM\...com [@ = comfile] -- "%1" %*
 O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDl​lInitialization,3)
 O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDll​Initialization,2)
 O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
 ========== Files/Folders - Created Within 30 Days ==========
 
 [2013/03/23 10:39:29 | 000,000,000 | ---D | C] -- C:\Users\Marie\AppData\Local\E​levatedDiagnostics
 [2013/03/23 10:27:15 | 000,000,000 | ---D | C] -- C:\Users\Marie\AppData\Roaming​\Microsoft\Windows\Start Menu\Programs\Wajam
 [2013/03/23 10:24:39 | 000,000,000 | ---D | C] -- C:\ProgramData\BasicSeek
 [2013/03/23 10:21:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Iminent
 [2013/03/23 10:20:58 | 000,000,000 | ---D | C] -- C:\Users\Marie\AppData\Local\U​pdater12767
 [2013/03/23 10:20:56 | 000,000,000 | ---D | C] -- C:\Users\Marie\AppData\Local\T​iger Savings
 [2013/03/23 10:20:19 | 003,504,792 | ---- | C] (Media Contact LLC                                           ) -- C:\Users\Marie\Desktop\Pacxon.​exe
 [2013/03/23 10:20:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Wajam
 
 ========== Files - Modified Within 30 Days ==========
 
 [2013/04/20 17:58:48 | 000,015,792 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-​376B-497e-B012-9C450E1B7327-5P​-1.C7483456-A289-439d-8115-601​632D005A0
 [2013/04/20 17:58:48 | 000,015,792 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-​376B-497e-B012-9C450E1B7327-5P​-0.C7483456-A289-439d-8115-601​632D005A0
 [2013/04/20 17:56:09 | 001,557,414 | ---- | M] () -- C:\Windows\SysNative\PerfStrin​gBackup.INI
 [2013/04/20 17:56:09 | 000,706,998 | ---- | M] () -- C:\Windows\SysNative\perfh00C.​dat
 [2013/04/20 17:56:09 | 000,618,714 | ---- | M] () -- C:\Windows\SysNative\perfh009.​dat
 [2013/04/20 17:56:09 | 000,131,426 | ---- | M] () -- C:\Windows\SysNative\perfc00C.​dat
 [2013/04/20 17:56:09 | 000,107,034 | ---- | M] () -- C:\Windows\SysNative\perfc009.​dat
 [2013/04/20 17:51:43 | 000,005,060 | ---- | M] () -- C:\Windows\SysWow64\LOCALSERVI​CE.INI
 [2013/04/20 17:51:37 | 000,001,062 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateT​askMachineCore.job
 [2013/04/20 17:51:35 | 000,001,089 | ---- | M] () -- C:\Windows\SysWow64\bscs.ini
 [2013/04/20 17:51:29 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
 [2013/04/20 17:51:24 | 429,191,167 | -HS- | M] () -- C:\hiberfil.sys
 [2013/04/20 14:13:06 | 000,000,000 | ---- | M] () -- C:\END
 [2013/04/20 13:38:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
 [2013/04/20 13:33:00 | 000,001,066 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateT​askMachineUA.job
 [2013/04/11 11:51:55 | 000,424,344 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.​DAT
 [2013/04/06 10:29:19 | 000,382,523 | ---- | M] () -- C:\Users\Marie\Desktop\SandPai​nting.png
 [2013/03/30 19:25:38 | 000,000,073 | ---- | M] () -- C:\Users\Marie\AppData\Local\X​-Plane_drm.prf
 [2013/03/23 10:24:32 | 000,000,954 | ---- | M] () -- C:\Windows\SysWow64\InstallUti​l.InstallLog
 [2013/03/23 10:20:34 | 003,504,792 | ---- | M] (Media Contact LLC                                           ) -- C:\Users\Marie\Desktop\Pacxon.​exe
 [2013/03/22 17:00:08 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.in​f
 [2013/03/22 17:00:07 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.i​nf
 
 ========== Files Created - No Company Name ==========
 
 [2013/04/06 10:29:19 | 000,382,523 | ---- | C] () -- C:\Users\Marie\Desktop\SandPai​nting.png
 [2013/03/23 10:21:38 | 000,000,954 | ---- | C] () -- C:\Windows\SysWow64\InstallUti​l.InstallLog
 [2013/03/23 10:20:50 | 000,000,000 | ---- | C] () -- C:\END
 [2013/03/22 17:00:08 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.in​f
 [2013/03/22 17:00:07 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.i​nf
 [2013/01/05 23:16:05 | 000,000,814 | ---- | C] () -- C:\Windows\SysWow64\SHORTCUT.I​NI
 [2013/01/05 23:15:08 | 000,000,134 | ---- | C] () -- C:\Windows\SysWow64\REMOTEDEVI​CE.INI
 [2013/01/05 23:13:11 | 000,005,060 | ---- | C] () -- C:\Windows\SysWow64\LOCALSERVI​CE.INI
 [2013/01/05 23:12:50 | 000,000,098 | ---- | C] () -- C:\Windows\SysWow64\LOCALDEVIC​E.INI
 [2013/01/05 23:11:15 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\BSPRINT.IN​I
 [2013/01/05 19:09:38 | 000,235,286 | ---- | C] () -- C:\Windows\hpoins21.dat
 [2013/01/05 19:09:38 | 000,005,474 | ---- | C] () -- C:\Windows\hpomdl21.dat
 [2013/01/02 01:43:39 | 000,000,080 | ---- | C] () -- C:\Users\Marie\AppData\Local\X​-Plane Installer.prf
 [2013/01/01 20:44:53 | 000,000,073 | ---- | C] () -- C:\Users\Marie\AppData\Local\X​-Plane_drm.prf
 [2012/12/27 00:04:50 | 001,551,984 | ---- | C] () -- C:\Windows\SysWow64\PerfString​Backup.INI
 [2012/12/26 19:29:39 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.da​t
 
 ========== ZeroAccess Check ==========
 
 [2009/07/14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.in​i
 
 [HKEY_CURRENT_USER\Software\Cla​sses\clsid\{42aedc87-2188-41fd​-b9a3-0c966feabec1}\InProcServ​er32] /64
 
 [HKEY_CURRENT_USER\Software\Cla​sses\Wow6432node\clsid\{42aedc​87-2188-41fd-b9a3-0c966feabec1​}\InProcServer32]
 
 [HKEY_CURRENT_USER\Software\Cla​sses\clsid\{fbeb8a05-beee-4442​-804e-409d6c4515e9}\InProcServ​er32] /64
 
 [HKEY_CURRENT_USER\Software\Cla​sses\Wow6432node\clsid\{fbeb8a​05-beee-4442-804e-409d6c4515e9​}\InProcServer32]
 
 [HKEY_LOCAL_MACHINE\Software\Cl​asses\clsid\{42aedc87-2188-41f​d-b9a3-0c966feabec1}\InProcSer​ver32] /64
 "" = C:\Windows\SysNative\shell32.d​ll -- [2012/06/09 07:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Apartment
 
 [HKEY_LOCAL_MACHINE\Software\Wo​w6432Node\Classes\clsid\{42aed​c87-2188-41fd-b9a3-0c966feabec​1}\InProcServer32]
 "" = %SystemRoot%\system32\shell32.​dll -- [2012/06/09 06:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Apartment
 
 [HKEY_LOCAL_MACHINE\Software\Cl​asses\clsid\{5839FCA9-774D-42A​1-ACDA-D6A79037F57F}\InProcSer​ver32] /64
 "" = C:\Windows\SysNative\wbem\fast​prox.dll -- [2009/07/14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Free
 
 [HKEY_LOCAL_MACHINE\Software\Wo​w6432Node\Classes\clsid\{5839F​CA9-774D-42A1-ACDA-D6A79037F57​F}\InProcServer32]
 "" = %systemroot%\system32\wbem\fas​tprox.dll -- [2010/11/20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Free
 
 [HKEY_LOCAL_MACHINE\Software\Cl​asses\clsid\{F3130CDB-AA52-4C3​A-AB32-85FFC23AF9C1}\InProcSer​ver32] /64
 "" = C:\Windows\SysNative\wbem\wbem​ess.dll -- [2009/07/14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Both
 
 [HKEY_LOCAL_MACHINE\Software\Wo​w6432Node\Classes\clsid\{F3130​CDB-AA52-4C3A-AB32-85FFC23AF9C​1}\InProcServer32]
 
 ========== LOP Check ==========
 
 [2013/01/05 22:08:19 | 000,000,000 | ---D | M] -- C:\Users\Marie\AppData\Roaming​\MotioninJoy
 [2013/01/05 22:53:26 | 000,000,000 | ---D | M] -- C:\Users\Marie\AppData\Roaming​\PCCUStubInstaller
 [2013/01/18 16:45:22 | 000,000,000 | ---D | M] -- C:\Users\Marie\AppData\Roaming​\WildTangent
 
 ========== Purity Check ==========
 
 

 < End of report >



 OTL Extras logfile created on: 4/20/2013 6:11:13 PM - Run 1
 OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Marie\Downloads
 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
 Internet Explorer (Version = 9.10.9200.16540)
 Locale: 00000409 | Country: France | Language: FRA | Date Format: dd/MM/yyyy
 
 5.87 Gb Total Physical Memory | 4.23 Gb Available Physical Memory | 72.03% Memory free
 11.73 Gb Paging File | 9.78 Gb Available in Paging File | 83.40% Paging File free
 Paging file location(s): ?:\pagefile.sys [binary data]
 
 %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
 Drive C: | 917.56 Gb Total Space | 843.76 Gb Free Space | 91.96% Space Free | Partition Type: NTFS
 Drive D: | 931.51 Gb Total Space | 657.47 Gb Free Space | 70.58% Space Free | Partition Type: NTFS
 Drive E: | 13.85 Gb Total Space | 1.71 Gb Free Space | 12.33% Space Free | Partition Type: NTFS
 
 Computer Name: MAISON | User Name: Marie | Logged in as Administrator.
 Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
 Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
 ========== Extra Registry (SafeList) ==========
 
 
 ========== File Associations ==========
 
 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\<extension>]
 .html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
 .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.​exe (Microsoft Corporation)
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\<extension>]
 .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.ex​e (Microsoft Corporation)
 .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
 
 ========== Shell Spawning ==========
 
 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\<key>\shell\[comma​nd]\command]
 batfile [open] -- "%1" %*
 cmdfile [open] -- "%1" %*
 comfile [open] -- "%1" %*
 exefile [open] -- "%1" %*
 helpfile [open] -- Reg Error: Key error.
 htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
 htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
 http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
 https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
 inffile [install] -- %SystemRoot%\System32\InfDefau​ltInstall.exe "%1" (Microsoft Corporation)
 InternetShortcut [open] -- "C:\Windows\System32\rundll32.​exe" "C:\Windows\System32\ieframe.d​ll",OpenURL %l (Microsoft Corporation)
 InternetShortcut [print] -- "C:\Windows\System32\rundll32.​exe" "C:\Windows\System32\mshtml.dl​l",PrintHTML "%1" (Microsoft Corporation)
 piffile [open] -- "%1" %*
 regfile [merge] -- Reg Error: Key error.
 scrfile [config] -- "%1"
 scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
 scrfile [open] -- "%1" /S
 txtfile [edit] -- Reg Error: Key error.
 Unknown [openas] -- %SystemRoot%\system32\rundll32​.exe %SystemRoot%\system32\shell32.​dll,OpenAs_RunDLL %1
 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 Folder [explore] -- Reg Error: Value error.
 Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
 CLSID\{871C5380-42A0-1069-A2EA​-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\<key>\shell\[comma​nd]\command]
 batfile [open] -- "%1" %*
 cmdfile [open] -- "%1" %*
 comfile [open] -- "%1" %*
 cplfile [cplopen] -- %SystemRoot%\System32\control.​exe "%1",%* (Microsoft Corporation)
 exefile [open] -- "%1" %*
 helpfile [open] -- Reg Error: Key error.
 htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
 htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
 http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
 https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
 inffile [install] -- %SystemRoot%\System32\InfDefau​ltInstall.exe "%1" (Microsoft Corporation)
 piffile [open] -- "%1" %*
 regfile [merge] -- Reg Error: Key error.
 scrfile [config] -- "%1"
 scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
 scrfile [open] -- "%1" /S
 txtfile [edit] -- Reg Error: Key error.
 Unknown [openas] -- %SystemRoot%\system32\rundll32​.exe %SystemRoot%\system32\shell32.​dll,OpenAs_RunDLL %1
 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 Folder [explore] -- Reg Error: Value error.
 Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
 CLSID\{871C5380-42A0-1069-A2EA​-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
 
 ========== Security Center Settings ==========
 
 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center]
 "cval" = 1
 
 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Monitoring]
 
 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Svc]
 "VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
 "AntiVirusOverride" = 0
 "AntiSpywareOverride" = 0
 "FirewallOverride" = 0
 
 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Svc\Vol]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center]
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Security Center\Svc]
 
 ========== Firewall Settings ==========
 
 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Services\SharedA​ccess\Parameters\FirewallPolic​y\DomainProfile]
 "DisableNotifications" = 0
 "EnableFirewall" = 1
 
 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Services\SharedA​ccess\Parameters\FirewallPolic​y\StandardProfile]
 "DisableNotifications" = 0
 "EnableFirewall" = 1
 
 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Services\SharedA​ccess\Parameters\FirewallPolic​y\PublicProfile]
 "DisableNotifications" = 0
 "EnableFirewall" = 1
 
 ========== Authorized Applications List ==========
 
 
 ========== Vista Active Open Ports Exception List ==========
 
 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Services\SharedA​ccess\Parameters\FirewallPolic​y\FirewallRules]
 "{03D8704B-74F5-4B48-83A8-CB5A​93D9A55C}" = lport=2869 | protocol=6 | dir=in | app=system |
 "{0EA99D94-8A37-4363-8AC6-E662​450D52A7}" = lport=10243 | protocol=6 | dir=in | app=system |
 "{1D223A45-E596-4A3F-B033-3268​3EF53064}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
 "{3E460609-32C7-4B31-9175-0BF8​FBCAAFBE}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svch​ost.exe |
 "{470155F5-C3C8-4659-8F99-FC06​85D316CA}" = rport=138 | protocol=17 | dir=out | app=system |
 "{4A6ED929-F553-4324-82A0-9835​692367D2}" = lport=137 | protocol=17 | dir=in | app=system |
 "{71396E18-8D0C-4FEE-B9F0-729B​30E55087}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoo​lsv.exe |
 "{7209BD44-83E9-467A-91BA-FA9D​B9B70355}" = rport=137 | protocol=17 | dir=out | app=system |
 "{7F380E7B-0531-4C40-96CF-552A​A22134C2}" = rport=139 | protocol=6 | dir=out | app=system |
 "{82697B39-7C9A-4937-B62A-ADAB​EB8FB58C}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svch​ost.exe |
 "{85ECF6C7-E0EB-47DE-8176-569B​A1281DBD}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svch​ost.exe |
 "{A07A9DE7-B5ED-4C23-90A6-292E​9C02F836}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
 "{A4EE272F-597D-4F85-A68E-FFE3​B040D65F}" = lport=139 | protocol=6 | dir=in | app=system |
 "{AD465B6E-A8C4-40BE-92E0-B77D​A1BC8312}" = lport=445 | protocol=6 | dir=in | app=system |
 "{B32FF4B8-C0C8-4966-BA95-3343​86F40E18}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svch​ost.exe |
 "{B8C8830C-756F-4366-9973-33E7​D8B594FE}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svch​ost.exe |
 "{B99C6001-9F8F-4376-8ACA-0F8F​48DEBDF5}" = lport=138 | protocol=17 | dir=in | app=system |
 "{BF6AAD79-91BE-4313-84B5-6452​D91F5AC7}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svch​ost.exe |
 "{C37AEA33-BFC1-4F5F-8431-1093​E5C48880}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svch​ost.exe |
 "{C9FE7048-306B-4C6C-820E-18DB​73184CF4}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
 "{CAA544E8-AAF3-45A4-8AC1-1E19​EB73EAB0}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svch​ost.exe |
 "{CD827594-3306-4F35-8A4B-B435​739804F6}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svch​ost.exe |
 "{D483FC3E-071F-4515-ABA6-9199​4713FEA4}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
 "{E4701512-5A6B-4D9E-B76F-3397​DE252E65}" = rport=445 | protocol=6 | dir=out | app=system |
 "{F5F04BDD-2026-4246-95D8-C2CC​4BF1001C}" = rport=10243 | protocol=6 | dir=out | app=system |
 "{F6FFDF2D-B4E7-4157-8D2B-6207​460B7137}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svch​ost.exe |
 
 ========== Vista Active Application Exception List ==========
 
 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Services\SharedA​ccess\Parameters\FirewallPolic​y\FirewallRules]
 "{07104411-DE0C-4888-AB25-992F​75EF67E2}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
 "{088B64D3-93A5-4CFA-8FBF-641F​4B102606}" = protocol=17 | dir=in | app=c:\program files (x86)\ivt corporation\bluesoleil\bluesol​eilcs.exe |
 "{09EACE6F-32C8-443D-AE4D-17D9​2D1DBB02}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpofxm08.exe |
 "{1D287A05-B958-4CE0-9767-CDA2​261B60B9}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
 "{1E1BFB30-5020-453D-96F3-49BA​6FCF2F08}" = protocol=17 | dir=out | app=%programfiles(x86)%\window​s media player\wmplayer.exe |
 "{2036D97B-7576-4F4B-87BF-6971​D562DE05}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
 "{29546BF4-8F83-46A9-B1F7-B835​6621EEA1}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
 "{2B67D4CA-54F1-41EB-9F58-920E​D815C131}" = protocol=17 | dir=in | app=c:\program files (x86)\ivt corporation\bluesoleil\bluesol​eilcs.exe |
 "{2C1C12F0-3480-4BDE-987F-92E5​40BC4202}" = dir=in | app=c:\program files (x86)\hewlett-packard\media\dv​d\hpdvdsmart.exe |
 "{2FA37D48-A6DF-4517-8461-F9AA​9F533A0B}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposfx08.exe |
 "{30C757AB-708E-49FF-9897-7BED​6A739697}" = dir=in | app=c:\program files (x86)\hewlett-packard\media\dv​d\hptouchsmartphoto.exe |
 "{32B22295-FC47-4F46-9CAF-2CAD​DB3381EE}" = dir=in | app=c:\program files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe |
 "{357A8408-8D9B-49AB-92C8-C968​98AB2E5B}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpfccopy.exe |
 "{371B3EB8-9AF1-4911-A803-0F35​8A358E67}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqnrs08.exe |
 "{3A8994C1-6163-4E15-839B-A6EF​75209030}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
 "{3AF32E93-2AC8-4EA5-85C6-5577​F196BF41}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
 "{4111F6A0-DB75-4712-8591-494A​5A397D12}" = protocol=6 | dir=in | app=c:\program files (x86)\sweetim\communicator\swe​etpacksupdatemanager.exe |
 "{46313D74-B306-4633-93B1-7990​E1F33300}" = protocol=17 | dir=in | app=c:\windows\syswow64\msiexe​c.exe |
 "{46699DB7-DE68-4572-8E8E-0C36​979F903A}" = protocol=6 | dir=in | app=c:\program files (x86)\ivt corporation\bluesoleil\bluesol​eilcs.exe |
 "{4DBABCBA-8D75-41F6-9B2A-63C3​8F28ED39}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqpse.exe |
 "{4E4A1845-7955-4B8F-AEC1-E9B1​2AF80000}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
 "{4F723FBD-207D-42B2-B29A-41E3​9BEABADA}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
 "{5112D0C6-D62D-4E8C-93E1-7952​67505AC3}" = dir=in | app=c:\program files (x86)\hewlett-packard\mediasma​rt\photo\hpmediasmartphoto.exe |
 "{522DB3DF-86E8-4427-A6B4-9E22​D031C6B7}" = protocol=6 | dir=in | app=c:\program files (x86)\easybits for kids\programs\my first browser\myfirstbrowser.exe |
 "{5871B60C-1998-4579-B7D4-0FFF​6A3C5566}" = protocol=6 | dir=out | app=%programfiles(x86)%\window​s media player\wmplayer.exe |
 "{628B3F54-0E95-4878-8BC8-C265​D35CC136}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqste08.exe |
 "{67211BFA-2459-4F34-9183-07A0​618ADA72}" = dir=in | app=c:\program files (x86)\hewlett-packard\media\dv​d\kernel\clml\clmlsvc.exe |
 "{6C168E83-4D58-4CB1-BAE3-1207​7DF9E281}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqpsapp.exe |
 "{707E057E-EA11-4CA2-8302-5C9F​A5D10538}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
 "{7907C5D0-3C73-427D-BA34-B279​03D28922}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqkygrp.exe |
 "{7E902DA5-B9F4-413E-8EF9-9488​7B527F45}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqfxt08.exe |
 "{7F51BFF4-C762-45B9-BDED-E07C​DB3FE7CE}" = dir=in | app=c:\program files (x86)\hp\digital imaging\smart web printing\smartwebprintexe.exe |
 "{7F6069C3-3548-4C22-83CE-5834​27CDE699}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpofxs08.exe |
 "{7FF0EBD9-0611-4068-B073-310A​7A9F3D19}" = dir=in | app=c:\program files (x86)\hp\hp software update\hpwucli.exe |
 "{817C0528-2A94-494D-AF43-1C03​959FBF71}" = protocol=6 | dir=in | app=c:\windows\syswow64\msiexe​c.exe |
 "{841E38DB-5517-47FF-892C-3124​743C5356}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
 "{868DF356-DA33-44E1-8166-DF79​EDD71078}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
 "{893F353E-573E-4C2A-8504-D082​85377409}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgplgtupl.exe |
 "{8AA83FC7-6524-41D7-9B95-E6B6​D10A658E}" = dir=in | app=c:\program files (x86)\hewlett-packard\media\dv​d\hptouchsmartmusic.exe |
 "{8AC3381D-3C03-490D-B01C-4E1D​7AB57D60}" = dir=in | app=c:\program files (x86)\hewlett-packard\media\dv​d\tsmagent.exe |
 "{9B9862D2-0539-4E48-9F24-B105​4AFD5BFB}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgm.exe |
 "{9E1E2652-1FF9-4E94-9F3C-356E​BB4D6CB9}" = dir=in | app=c:\program files (x86)\hewlett-packard\touchsma​rt\music\hptouchsmartmusic.exe |
 "{9F1E2569-C34B-4FF1-88F9-EF10​8CE40A00}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpiscnapp.exe |
 "{9F959727-8B67-4B38-9C6C-A1DC​FFBB54EC}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
 "{9FFF26B3-B78F-4C3A-AD21-20A9​A467BD9E}" = dir=in | app=c:\program files (x86)\hewlett-packard\media\dv​d\hptouchsmartvideo.exe |
 "{A142C49F-5C66-446D-A038-CD5E​10931536}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
 "{A1F0E7A0-E283-46FD-B59D-51B2​35888D6E}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqcopy2.exe |
 "{AC32BE99-91C8-4632-AC6E-578B​5C7D6795}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svch​ost.exe |
 "{AE45D64E-5865-4E14-A6BD-0199​7C44F581}" = protocol=17 | dir=in | app=c:\program files (x86)\sweetim\communicator\swe​etpacksupdatemanager.exe |
 "{AE9D4490-1EF2-4436-B907-C403​BE14308F}" = protocol=6 | dir=out | app=system |
 "{B677ED1A-A1B3-417F-BF12-CC83​D52BFF9A}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposid01.exe |
 "{BE189553-9204-4B3C-A9C2-5990​CC26C523}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqsudi.exe |
 "{C522C2C6-EB49-49C6-BD1D-E282​4C42D2AE}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpoews01.exe |
 "{D158BF8B-C0A3-478D-876F-3FFA​FED8AE93}" = dir=in | app=c:\program files (x86)\cyberlink\powerdirector\​pdr8.exe |
 "{D4D997EC-15E7-49F8-875F-342D​B7479977}" = dir=in | app=c:\program files (x86)\hewlett-packard\mediasma​rt\video\hpmediasmartvideo.exe |
 "{D757180E-1EF7-4084-8BFA-2FF3​C155D56F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
 "{DEDAE32F-D32B-488D-930C-D29D​21A837B3}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
 "{E053FAAD-B158-402C-A07F-99F7​B12B0799}" = protocol=17 | dir=in | app=%programfiles(x86)%\window​s media player\wmplayer.exe |
 "{E6D11BA8-1BC6-4241-8216-00CB​99220DDD}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
 "{E8B35E3D-3F0C-45E4-B4E2-8643​C52C21D1}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
 "{ED9FC07D-6F0A-4ACE-8CF2-F22B​A1533DAE}" = protocol=6 | dir=in | app=c:\program files (x86)\ivt corporation\bluesoleil\bluesol​eilcs.exe |
 "{F006BB74-2B8C-4FC3-AEAC-A5FD​00E6A05E}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgpc01.exe |
 "{F54F2D9C-F757-4F76-86A4-FB37​63D263EF}" = protocol=17 | dir=in | app=c:\program files (x86)\easybits for kids\programs\my first browser\myfirstbrowser.exe |
 "{F9089570-74B0-4765-89C0-7489​BDDAB5DB}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpzwiz01.exe |
 "{FB50B297-0203-4A34-80C3-3AF6​0F29EF75}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgh.exe |
 "{FE373F89-CE2C-401E-AD3F-09CA​C2E0C83E}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe |
 "TCP Query User{DA031DB0-1703-402D-AEA9-D​07C5F0C27C5}D:\x-plane 10\x-plane 10\x-plane.exe" = protocol=6 | dir=in | app=d:\x-plane 10\x-plane 10\x-plane.exe |
 "UDP Query User{D136C3A5-CE2F-4CDD-A600-1​0DDE8B87AD8}D:\x-plane 10\x-plane 10\x-plane.exe" = protocol=17 | dir=in | app=d:\x-plane 10\x-plane 10\x-plane.exe |
 
 ========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Uninstall]
 "{05EFBF37-0E52-4579-875C-7EEF​0DFB4FCB}" = Network64
 "{071c9b48-7c32-4621-a0ac-3f80​9523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
 "{1B8ABA62-74F0-47ED-B18C-A431​28E591B8}" = Windows Live ID Sign-in Assistant
 "{208DF080-1321-4443-B9EE-D133​80C3577C}" = BlueSoleil 7.0.348.1
 "{2856A1C2-70C5-4EC3-AFF7-E5B5​1E5530A2}" = HP Client Services
 "{330DAC67-5B62-452A-A0E4-6B4A​5923940F}_is1" = MotioninJoy DS3 driver version 0.6.0005
 "{4B5F58F7-C7D1-3CE3-9B37-B657​F0852643}" = Microsoft .NET Framework 4 Client Profile FRA Language Pack
 "{4B6C7001-C7D6-3710-913E-5BC2​3FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
 "{5EB6F3CB-46F4-451F-A028-7F6D​8D35D7D0}" = Windows Live Language Selector
 "{5FCE6D76-F5DC-37AB-B2B8-22AB​8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
 "{6BFAB6C1-6D46-46DB-A538-A269​907C9F2F}" = Network64
 "{8220EEFE-38CD-377E-8595-1339​8D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
 "{889DF117-14D1-44EE-9F31-C5FB​5D47F68B}" = Yontoo 1.10.03
 "{89F4137D-6C26-4A84-BDB8-2E5A​4BB71E00}" = Microsoft Silverlight
 "{90120000-002A-0000-1000-0000​000FF1CE}" = Microsoft Office Office 64-bit Components 2007
 "{90120000-002A-040C-1000-0000​000FF1CE}" = Microsoft Office Shared 64-bit MUI (French) 2007
 "{95120000-00B9-0409-1000-0000​000FF1CE}" = Microsoft Application Error Reporting
 "{988329F4-A1A1-4D51-803C-EF27​25A97627}" = HP Photosmart All-In-One Driver Software 13.0 Rel. 2
 "{ad8a2fa1-06e7-4b0d-927d-6e54​b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
 "{BCA9334F-B6C9-4F65-9A73-AC5A​329A4D04}" = PlayReady PC Runtime amd64
 "{CC4D56B7-6F18-470B-8734-ABCD​75BCF4F1}" = HP Auto
 "{D954C6C2-544B-4091-A47F-11E7​7162883E}" = Microsoft Security Client
 "{DA54F80E-261C-41A2-A855-549A​144F2F59}" = Windows Live MIME IFilter
 "{DA5E371C-6333-3D8A-93A4-6FD5​B20BCC6E}" = Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319
 "{F5B09CFD-F0B2-36AF-8DF4-1DF6​B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
 "{FF21C3E6-97FD-474F-9518-8DCB​E94C2854}" = 64 Bit HP CIO Components Installer
 "HP Imaging Device Functions" = HP Imaging Device Functions 13.0
 "HP Photosmart Essential" = HP Photosmart Essential 3.5
 "HP Smart Web Printing" = HP Smart Web Printing 4.51
 "HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
 "HPOCR" = OCR Software by I.R.I.S. 13.0
 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
 "Microsoft .NET Framework 4 Client Profile FRA Language Pack" = Module linguistique Microsoft .NET Framework 4 Client Profile FRA
 "Microsoft Security Client" = Microsoft Security Essentials
 "NVIDIA Display Control Panel" = NVIDIA Display Control Panel
 "NVIDIA Drivers" = NVIDIA Drivers
 
 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Uninstall]
 "{07FA4960-B038-49EB-891B-9F95​930AA544}" = HP Customer Experience Enhancements
 "{09F56A49-A7B1-4AAB-95B9-D130​94254AD1}" = Windows Live UX Platform Language Pack
 "{0B0F231F-CE6A-483D-AA23-77B3​64F75917}" = Windows Live Installer
 "{0EF5BEA9-B9D3-46d7-8958-FB69​A0BAEACC}" = Status
 "{0F367CA3-3B2F-43F9-A44A-25A8​EE69E45D}" = Scan
 "{162d74e4-7d6d-4949-8018-50e9​6e314696}" = C6200_Help
 "{18455581-E099-4BA8-BC6B-F34B​2F06600C}" = Google Toolbar for Internet Explorer
 "{196BB40D-1578-3D01-B289-BEFC​77A11A1E}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319
 "{19BA08F7-C728-469C-8A35-BFBD​3633BE08}" = Windows Live Movie Maker
 "{1EC71BFB-01A3-4239-B6AF-B1AE​656B15C0}" = TrayApp
 "{1F1C2DFC-2D24-3E06-BCB8-7251​34ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
 "{1F6AB0E7-8CDD-4B93-8A23-AA9E​B2FEFCE4}" = Junk Mail filter update
 "{1FBF6C24-C1FD-4101-A42B-0C56​4F9E8E79}" = CyberLink DVD Suite Deluxe
 "{200FEC62-3C34-4D60-9CE8-EC37​2E01C08F}" = Windows Live SOXE Definitions
 "{20EFC9AA-BBC1-4DFD-81FF-9965​4F71CBF8}" = HPPhotoSmartDiscLabel_PrintOnD​isc
 "{2318C2B1-4965-11d4-9B18-0090​27A5CD4F}" = Google Toolbar for Internet Explorer
 "{254C37AA-6B72-4300-84F6-98A8​2419187E}" = ActiveCheck component for HP Active Support Library
 "{2EEA7AA4-C203-4b90-A34F-19FB​7EF1C81C}" = BufferChm
 "{2EFA4E4C-7B5F-48F7-A1C0-1AA8​82B7A9C3}" = HP Update
 "{2FF8C687-DB7D-4adc-A5DC-5798​3EC25046}" = DeviceDiscovery
 "{3336F667-9049-4D46-98B6-4C74​3EEBC5B1}" = Windows Live Photo Gallery
 "{34319F1F-7CF2-4CC9-B357-1AE7​D2FF3AC5}" = Windows Live
 "{34F4D9A4-42C2-4348-BEF4-E553​C84549E7}" = Windows Live Photo Gallery
 "{3B9A92DA-6374-4872-B646-253F​18624D5F}" = Windows Live Writer
 "{3C92B2E6-380D-4fef-B4DF-4A3B​4B669771}" = Copy
 "{3E29EE6C-963A-4aae-86C1-DC23​7C4A49FC}" = Intel(R) Rapid Storage Technology
 "{40BF1E83-20EB-11D8-97C5-0009​C5020658}" = Power2Go
 "{43CDF946-F5D9-4292-B006-BA0D​92013021}" = WebReg
 "{440B915A-0C85-45DB-92AE-75AE​14704A64}" = Fax
 "{44B2A0AB-412E-4F8C-B058-D1E8​AECCDFF5}" = Recovery Manager
 "{488F0347-C4A7-4374-91A7-3081​8BEDA710}" = Galerie de photos Windows Live
 "{4A70EF07-7F88-4434-BB61-D1DE​8AE93DD4}" = SolutionCenter
 "{4CBABDFD-49F8-47FD-BE7D-ECDE​7270525A}" = Windows Live PIMT Platform
 "{4E7C28C7-D5DA-4E9F-A1CA-6049​0B54AE35}" = UnloadSupport
 "{6057E21C-ABE9-4059-AE3E-3BEB​9925E660}" = Windows Live Messenger
 "{62687B11-58B5-4A18-9BC3-9DF4​CE03F194}" = Windows Live Writer Resources
 "{63FF21C9-A810-464F-B60A-3111​747B1A6D}" = GPBaseService2
 "{65153EA5-8B6E-43B6-857B-C6E4​FC25798A}" = Intel(R) Management Engine Components
 "{669D4A35-146B-4314-89F1-1AC3​D7B88367}" = HPAsset component for HP Active Support Library
 "{681B698F-C997-42C3-B184-B489​C6CA24C9}" = HPPhotoSmartDiscLabelContent1
 "{682B3E4F-696A-42DE-A41C-4C07​EA1678B4}" = Windows Live SOXE
 "{685B0843-6C8D-4E42-B60D-2B86​B45526E0}" = PS_AIO_02_Software_Min
 "{6A05FEDF-662E-46BF-8A25-010E​3F1C9C69}" = Windows Live UX Platform Language Pack
 "{6BBA26E9-AB03-4FE7-831A-3535​584CA002}" = Toolbox
 "{6DEC8BD5-7574-47FA-B080-492B​BBE2FEA3}" = Windows Live Movie Maker
 "{710f4c1c-cc18-4c49-8cbf-5124​0c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
 "{789A5B64-9DD9-4BA5-915A-F0FC​0A1B7BFE}" = Apple Software Update
 "{7F2A11F4-EAE8-4325-83EC-E3E9​9F85169E}" = HP Support Information
 "{80956555-A512-4190-9CAD-B000​C36D6B6B}" = Windows Live Messenger
 "{8DD46C6A-0056-4FEC-B70A-28BB​16A1F11F}" = MSVCRT
 "{8FC4F1DD-F7FD-4766-804D-3C8F​F1D309B0}" = Ralink RT2860 Wireless LAN Card
 "{90120000-0011-0000-0000-0000​000FF1CE}" = Microsoft Office Professional Plus 2007
 "{90120000-0011-0000-0000-0000​000FF1CE}_PROPLUS_{6E107EB7-8B​55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
 "{90120000-0015-040C-0000-0000​000FF1CE}" = Microsoft Office Access MUI (French) 2007
 "{90120000-0015-040C-0000-0000​000FF1CE}_PROPLUS_{CF3C20A6-47​B7-48DA-95C1-6FBB5A439AF8}" = Microsoft Office 2007 Service Pack 3 (SP3)
 "{90120000-0016-040C-0000-0000​000FF1CE}" = Microsoft Office Excel MUI (French) 2007
 "{90120000-0016-040C-0000-0000​000FF1CE}_PROPLUS_{CF3C20A6-47​B7-48DA-95C1-6FBB5A439AF8}" = Microsoft Office 2007 Service Pack 3 (SP3)
 "{90120000-0018-040C-0000-0000​000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
 "{90120000-0018-040C-0000-0000​000FF1CE}_PROPLUS_{CF3C20A6-47​B7-48DA-95C1-6FBB5A439AF8}" = Microsoft Office 2007 Service Pack 3 (SP3)
 "{90120000-0019-040C-0000-0000​000FF1CE}" = Microsoft Office Publisher MUI (French) 2007
 "{90120000-0019-040C-0000-0000​000FF1CE}_PROPLUS_{CF3C20A6-47​B7-48DA-95C1-6FBB5A439AF8}" = Microsoft Office 2007 Service Pack 3 (SP3)
 "{90120000-001A-040C-0000-0000​000FF1CE}" = Microsoft Office Outlook MUI (French) 2007
 "{90120000-001A-040C-0000-0000​000FF1CE}_PROPLUS_{CF3C20A6-47​B7-48DA-95C1-6FBB5A439AF8}" = Microsoft Office 2007 Service Pack 3 (SP3)
 "{90120000-001B-040C-0000-0000​000FF1CE}" = Microsoft Office Word MUI (French) 2007
 "{90120000-001B-040C-0000-0000​000FF1CE}_PROPLUS_{CF3C20A6-47​B7-48DA-95C1-6FBB5A439AF8}" = Microsoft Office 2007 Service Pack 3 (SP3)
 "{90120000-001F-0401-0000-0000​000FF1CE}" = Microsoft Office Proof (Arabic) 2007
 "{90120000-001F-0401-0000-0000​000FF1CE}_PROPLUS_{3E8EA473-EC​CE-405F-A9CA-59446AEADD3A}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
 "{90120000-001F-0407-0000-0000​000FF1CE}" = Microsoft Office Proof (German) 2007
 "{90120000-001F-0407-0000-0000​000FF1CE}_PROPLUS_{928D7B99-2B​EA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
 "{90120000-001F-0409-0000-0000​000FF1CE}" = Microsoft Office Proof (English) 2007
 "{90120000-001F-0409-0000-0000​000FF1CE}_PROPLUS_{1FF96026-A0​4A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
 "{90120000-001F-040C-0000-0000​000FF1CE}" = Microsoft Office Proof (French) 2007
 "{90120000-001F-040C-0000-0000​000FF1CE}_PROPLUS_{71F055E8-E2​C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
 "{90120000-001F-0413-0000-0000​000FF1CE}" = Microsoft Office Proof (Dutch) 2007
 "{90120000-001F-0413-0000-0000​000FF1CE}_PROPLUS_{2C95E7EE-FE​A7-4B3A-A6E5-DF90A88B816A}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
 "{90120000-001F-0C0A-0000-0000​000FF1CE}" = Microsoft Office Proof (Spanish) 2007
 "{90120000-001F-0C0A-0000-0000​000FF1CE}_PROPLUS_{2314F9A1-12​6F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
 "{90120000-002A-0000-1000-0000​000FF1CE}_PROPLUS_{664655D8-B9​BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3)
 "{90120000-002A-040C-1000-0000​000FF1CE}_PROPLUS_{8283FD64-6A​3B-4104-9E12-7CA25EF29A1A}" = Microsoft Office 2007 Service Pack 3 (SP3)
 "{90120000-002C-040C-0000-0000​000FF1CE}" = Microsoft Office Proofing (French) 2007
 "{90120000-0044-040C-0000-0000​000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007
 "{90120000-0044-040C-0000-0000​000FF1CE}_PROPLUS_{CF3C20A6-47​B7-48DA-95C1-6FBB5A439AF8}" = Microsoft Office 2007 Service Pack 3 (SP3)
 "{90120000-006E-040C-0000-0000​000FF1CE}" = Microsoft Office Shared MUI (French) 2007
 "{90120000-006E-040C-0000-0000​000FF1CE}_PROPLUS_{8283FD64-6A​3B-4104-9E12-7CA25EF29A1A}" = Microsoft Office 2007 Service Pack 3 (SP3)
 "{912CED74-88D3-4C5B-ACB0-1323​1864975E}" = PressReader
 "{92EA4134-10D1-418A-91E1-5A04​53131A38}" = Windows Live Movie Maker
 "{94F8D42D-BB31-4858-9705-7D75​6D8D9655}" = PS_AIO_02_Software
 "{953AA732-9AFB-49C9-84A4-7F96​CA0A08DA}" = SweetPacks bundle uninstaller
 "{9A25302D-30C0-39D9-BD6F-21E6​EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
 "{9B362566-EC1B-4700-BB9C-EC66​1BDE2175}" = DocProc
 "{9BE518E6-ECC6-35A9-88E4-8775​5C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
 "{9D56775A-93F3-44A3-8092-840E​3826DE30}" = Windows Live Mail
 "{9FAE6E8D-E686-49F5-A574-0A58​DFD9580C}" = Windows Live Mail
 "{A0C9DF2B-89B5-4483-8983-18A6​8200F1B4}" = SweetIM for Messenger 3.7
 "{A726AE06-AAA3-43D1-87E3-70F5​10314F04}" = Windows Live Writer
 "{A92DAB39-4E2C-4304-9AB6-BC44​E68B55E2}" = Google Update Helper
 "{A9BDCA6B-3653-467B-AC83-9436​7DA3BFE3}" = Windows Live Photo Common
 "{AAAFC670-569B-4A2F-82B4-4294​5E0DE3EF}" = Windows Live Writer
 "{AAF454FC-82CA-4F29-AB31-6A10​9485E76E}" = Windows Live Writer
 "{AF0CE7C0-A3E4-4D73-988B-B291​87EC6E9A}" = QuickTime
 "{B28635AB-1DF3-4F07-BFEA-975D​911B549B}" = hpphotosmartdisclabelplugin
 "{B4B2096B-B13E-408E-8985-BD07​463D5487}" = PS_AIO_02_ProductContext
 "{B8AC1A89-FFD1-4F97-8051-E505​A160F562}" = HP Odometer
 "{BD7204BA-DD64-499E-9B55-6A28​2CDF4FA4}" = Destinations
 "{C43326F5-F135-4551-8270-7F7A​BA0462E1}" = HPProductAssistant
 "{C66824E4-CBB3-4851-BB3F-E8CF​D6350923}" = Windows Live Mail
 "{C893D8C0-1BA0-4517-B11C-E89B​65E72F70}" = Windows Live Photo Common
 "{CAE4213F-F797-439D-BD9E-79B7​1D115BE3}" = HPPhotoGadget
 "{CB099890-1D5F-11D5-9EA9-0050​BAE317E1}" = PowerDirector
 "{CE95A79E-E4FC-4FFF-8A75-29F0​4B942FF2}" = Windows Live UX Platform
 "{D0B44725-3666-492D-BEF6-587A​14BD9BD9}" = MSVCRT_amd64
 "{D436F577-1695-4D2F-8B44-AC76​C99E0002}" = Windows Live Photo Common
 "{D45240D3-B6B3-4FF9-B243-54EC​E3E10066}" = Windows Live Communications Platform
 "{D79113E7-274C-470B-BD46-01B1​0219DF6A}" = HPPhotosmartEssential
 "{D86B0E2E-DF9A-441C-AF77-8D1A​0FF00FA6}" = AIO_Scan
 "{D9D8F2CF-FE2D-4644-9762-01F9​16FE90A9}" = HPPhotoSmartDiscLabel_PaperLab​el
 "{DC635845-46D3-404B-BCB1-FC4A​91091AFA}" = SmartWebPrinting
 "{DDC8BDEE-DCAC-404D-8257-3E8D​4B782467}" = Windows Live Writer Resources
 "{E09C4DB7-630C-4F06-A631-8EA7​239923AF}" = D3DX10
 "{EA8FA6BE-29BE-4AF2-9352-841F​83215EB0}" = Update Manager for SweetPacks 1.1
 "{EB4DF488-AAEF-406F-A341-CB2A​AA315B90}" = Windows Live Messenger
 "{F0B430D1-B6AA-473D-9B06-AA3D​D01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
 "{F132AF7F-7BCA-4EDE-8A7C-9581​08FE7DBC}" = Realtek High Definition Audio Driver
 "{F5266D28-E0B2-4130-BFC5-EE15​5AD514DC}" = Apple Application Support
 "{F631F1BE-00B0-49CF-8DFB-9885​975B27CD}" = C6200
 "{FB4BB287-37F9-4E27-9C4D-2D38​82E08EFF}" = DVD Menu Pack for HP MediaSmart Video
 "{FD7F0DB8-0E96-4D64-AD4D-9B5A​936AF2A8}" = LightScribe System Software
 "{FE044230-9CA5-43F7-9B58-5AC5​A28A1F33}" = Windows Live Essentials
 "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
 "InstallShield_{1FBF6C24-C1FD-​4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite Deluxe
 "InstallShield_{40BF1E83-20EB-​11D8-97C5-0009C5020658}" = Power2Go
 "InstallShield_{CB099890-1D5F-​11D5-9EA9-0050BAE317E1}" = PowerDirector
 "InstallShield_{FB4BB287-37F9-​4E27-9C4D-2D3882E08EFF}" = DVD Menu Pack for HP MediaSmart Video
 "My HP Game Console" = HP Game Console
 "PDF Complete" = PDF Complete Special Edition
 "PROPLUS" = Microsoft Office Professional Plus 2007
 "Wajam" = Wajam
 "WildTangent hp Master Uninstall" = HP Games
 "WinLiveSuite" = Windows Live
 "WT087330" = Bounce Symphony
 "WT087361" = FATE
 "WT087380" = John Deere Drive Green
 "WT087394" = Penguins!
 "WT087396" = Polar Bowler
 "WT087428" = Bejeweled 2 Deluxe
 "WT087453" = Chuzzle Deluxe
 "WT087480" = Insaniquarium Deluxe
 "WT087485" = Jewel Quest II
 "WT087490" = Jewel Quest Solitaire
 "WT087501" = Plants vs. Zombies
 "WT087510" = Slingo Deluxe
 "WT087513" = Virtual Villagers - The Secret City
 "WT087519" = Wedding Dash
 "WT087533" = Zuma Deluxe
 "WT087536" = Diner Dash 2 Restaurant Rescue
 "WT089303" = Build-a-Lot - The Elizabethan Era
 "WT089308" = Blasterball 3
 "WT089328" = Farm Frenzy
 "WT089359" = Cake Mania
 "WT089362" = Agatha Christie - Peril at End House
 
 ========== Last 20 Event Log Errors ==========
 
 [ Application Events ]
 Error - 3/23/2013 6:43:21 PM | Computer Name = Maison | Source = Applica

Profil : Equipe sécurité
jypalou
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés) Helpeur confirmé Maître smilies
  1. Posté le 21/04/2013 à 09:19:17  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
[:pepitochocolat:1] Bonjour HerveA Tu as posté dans un sujet vieux de presque 4 ans [:Jypalou:2]
 Poste ton probléme dans la catégorie sécurité:
 http://forum.telecharger.01net [...] ets-1.html
 Tu es bien infecté fais ceci et poste ta réponse dans la cat Sécurité [:92432:1]
 [:azerty39:1] Télécharges   AdwCleaner "de Xplode"  http://img15.hostingpics.net/p​ics/960654CaptureAdwc.png
 Pour Vista et Windows 7 : il faut lancer le fichier par clic-droit  "Exécuter en tant qu'administrateur"
 Lance AdwCleaner.exe sur le bureau http://img15.hostingpics.net/p​ics/900789Capturerxe.png
 Acceptes l'avertissement qui suit
 Clic sur Recherche
 http://img15.hostingpics.net/p​ics/738998CaptureADre.png
 Patientes le temps de la recherche
 Postes le rapport qui apparait à la fin.
 Il est sauvegardé aussi sous (C:\AdwCleaner[R1].txt)
 Clic sur Quitter
 A+ [:antef:4]


---------------
Membres - Les règles à respecter .
Je n'accepte aucune demande de nettoyage en message privé.
Il vaut mieux aller plus loin avec quelqu'un que nulle part avec tout le monde .
[:tachouille]
 Page :
1

Aller à :
 

Sujets relatifs
Plus de sujets relatifs à : Security alert! Alert #4!

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
Message "ne trouve pas le fichier eksplorasi.pif" 1
Contact SKYPE 0
Désinstallation Winsudate ( résolu ) 7
curseurs intenable il bouge tout le temps 3
Scan antivirus Avast Résolu 2